Alternatives and similar repositories for swid-tools:

Users that are interested in swid-tools are comparing it to the libraries listed below

• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated last year
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• csaf-tools / CVRF-CSAF-Converter
  A CVRF CSAF Converter, taking care about OASIS specification.
  ☆10Updated this week
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆28Updated last year
• cve-search / CveXplore
  CveXplore
  ☆36Updated last week
• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆38Updated 2 years ago
• fabric8-analytics / cvejob
  A tool which tries to map CVEs from NVD to packages in supported ecosystems (Maven, NPM, PyPI).
  ☆12Updated 2 years ago
• interlynk-io / sbomgr
  SBOM Grep - search through SBOMs
  ☆22Updated last month
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated last year
• secdev / scapytain
  Scapytain is a web application that enables you to store, organise and run test campaigns on top of Scapy.
  ☆19Updated 6 years ago
• mal-lang / exampleLang
  A MAL language that demonstrates the Maven project structure
  ☆23Updated 3 years ago
• libyal / dtfabric
  Tooling for data type and structure management
  ☆10Updated 3 months ago
• silviocesare / Clonewise
  Clonewise - Detecting Package Clones and Inferring Security Vulnerabilities on Entire Linux Distributions.
  ☆24Updated 12 years ago
• oasis-open / csaf-parser
  OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…
  ☆23Updated 2 years ago
• in-toto / supply-chain-compromises
  ☆22Updated 3 years ago
• crtsh / go-certlint
  Go wrapper for awslabs/certlint
  ☆25Updated 4 years ago
• CrowdStrike / omigo-data-analytics
  Data Analytics Library for Python
  ☆15Updated this week
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆63Updated this week
• runZeroInc / recog
  Pattern recognition for hosts, services, and content
  ☆13Updated 2 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated this week
• bgnetworks / meta-dependencytrack
  A Yocto meta-layer for generating CycloneDX SBOMs and automatically uploading them to Dependency Track.
  ☆20Updated 10 months ago
• OVALProject / Sandbox
  The OVAL Language Sandbox
  ☆44Updated 4 years ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• interlynk-io / sbomex
  Find & pull public SBOMs
  ☆17Updated 7 months ago
• srcclr / build-inspector
  Inspect your builds to look for changes in filesystem, network traffic and running processes.
  ☆13Updated 6 years ago
• ossf / project-template
  OpenSSF Project Template
  ☆17Updated last year
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated last year
• danielfett / tlsprofiler
  Compares the TLS configuration of a web server to the Mozilla TLS Profiles
  ☆25Updated last year
• hannob / pypi-bad
  Bad packages from the pypi repository
  ☆9Updated 6 years ago