Alternatives and similar repositories for cvedb

Users that are interested in cvedb are comparing it to the libraries listed below

• LLNL / Surfactant
  Modular framework for file information extraction and dependency analysis to generate accurate SBOMs
  ☆33Updated this week
• trailofbits / not-slithering-anywhere
  The Python Version of our Not Go-ing Anywhere Vulnerable Application
  ☆11Updated last year
• Cybergenik / hopper
  Coverage-Guided Greybox Distributed Fuzzer
  ☆131Updated 4 months ago
• trailofbits / testing-handbook
  Trail of Bits Testing Handbook
  ☆79Updated last month
• GaloisInc / MATE
  MATE is a suite of tools for interactive program analysis with a focus on hunting for bugs in C and C++ code using Code Property Graphs.
  ☆194Updated 2 years ago
• fgsect / FitM
  FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulati…
  ☆291Updated 3 years ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆78Updated last month
• trailofbits / itergator
  CodeQL library and queries for iterator invalidation
  ☆22Updated 4 years ago
• parikhakshat / autoharness
  A tool that automatically creates fuzzing harnesses based on a library
  ☆280Updated 3 years ago
• purs3lab / Argus
  ☆48Updated last year
• IQTLabs / software-supply-chain-compromises
  A dataset of software supply chain compromises. Please help us maintain it!
  ☆130Updated 2 years ago
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆112Updated 2 months ago
• trailofbits / it-depends
  A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…
  ☆368Updated this week
• quarkslab / pastis
  PASTIS: Collaborative Fuzzing Framework
  ☆162Updated last week
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆162Updated this week
• claroty / busybox-fuzzing
  ☆95Updated 3 years ago
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆218Updated this week
• noperator / slice
  SAST + LLM Interprocedural Context Extractor
  ☆50Updated last week
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆151Updated last year
• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆425Updated this week
• AIxCyberChallenge / sherpa
  Security Harness Engineering for Robust Program Analysis
  ☆67Updated last week
• trailofbits / polytracker
  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
  ☆579Updated 4 months ago
• mitre / emb3d
  ☆28Updated 2 months ago
• TNO-S3 / WuppieFuzz
  A coverage-guided REST API fuzzer developed on top of LibAFL
  ☆127Updated this week
• fkie-cad / libdesock
  A de-socketing library for fuzzing.
  ☆157Updated 3 weeks ago
• AppThreat / atom
  atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
  ☆71Updated last month
• tlspuffin / tlspuffin
  A Dolev-Yao-model-guided fuzzer for TLS
  ☆143Updated this week
• usnistgov / ai-bugfinder-testbed
  A static analyzer powered by AI
  ☆21Updated last year
• posidron / dharma
  Generation-based, context-free grammar fuzzer.
  ☆52Updated 3 years ago
• koutheir / binary-security-check
  Moved: https://codeberg.org/koutheir/binary-security-check
  ☆69Updated last year