Alternatives and similar repositories for cvedb

Users that are interested in cvedb are comparing it to the libraries listed below

• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆79Updated last week
• AppThreat / chen
  Code Hierarchy Exploration Net (chen)
  ☆24Updated this week
• fgsect / FitM
  FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulati…
  ☆290Updated 3 years ago
• uqcyber / ColdPress
  Extensible Platform for Malware Analysis
  ☆17Updated 5 years ago
• IQTLabs / software-supply-chain-compromises
  A dataset of software supply chain compromises. Please help us maintain it!
  ☆129Updated 3 years ago
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆143Updated 2 weeks ago
• AppThreat / atom
  atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
  ☆83Updated 3 weeks ago
• purs3lab / Argus
  ☆52Updated last year
• llnl / Surfactant
  Modular framework for file information extraction and dependency analysis to generate accurate SBOMs
  ☆39Updated this week
• trailofbits / testing-handbook
  Trail of Bits Testing Handbook - appsec.guide
  ☆91Updated last week
• RogoLabs / cve.icu
  CVE.ICU code.
  ☆50Updated this week
• FutureComputing4AI / AutoYara
  Automated Yara Rule generation using Biclustering
  ☆76Updated 3 months ago
• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆445Updated this week
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆160Updated last year
• Cybergenik / hopper
  Coverage-Guided Greybox Distributed Fuzzer
  ☆132Updated 9 months ago
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆300Updated this week
• trailofbits / it-depends
  A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…
  ☆381Updated 2 weeks ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…
  ☆135Updated last week
• trailofbits / semgrep-rules
  Semgrep queries developed by Trail of Bits.
  ☆468Updated 2 months ago
• ucsb-seclab / chainreactor
  ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. T…
  ☆57Updated last year
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆81Updated last year
• trailofbits / not-slithering-anywhere
  The Python Version of our Not Go-ing Anywhere Vulnerable Application
  ☆11Updated 2 years ago
• quarkslab / pastis
  PASTIS: Collaborative Fuzzing Framework
  ☆166Updated 3 months ago
• GaloisInc / MATE
  MATE is a suite of tools for interactive program analysis with a focus on hunting for bugs in C and C++ code using Code Property Graphs.
  ☆195Updated 3 years ago
• fkie-cad / libdesock
  A de-socketing library for fuzzing.
  ☆164Updated 5 months ago
• trailofbits / vscode-sarif-explorer
  SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results
  ☆43Updated last month
• noperator / slice
  SAST + LLM Interprocedural Context Extractor
  ☆176Updated 3 months ago
• tstromberg / supplychain-attack-data
  Data about all known supply-chain attacks through history
  ☆63Updated 8 months ago
• fluidattacks / awesome-cvelabs
  A list of all awesome CVELabs
  ☆25Updated last year
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆113Updated 7 months ago