Alternatives and similar repositories for vulntology

Users that are interested in vulntology are comparing it to the libraries listed below

• OWASP / OdTM
  OWASP Ontology-driven Threat Modelling framework
  ☆37Updated last year
• kannkyo / nvd-api
  NVD API 2.0 for python
  ☆12Updated 8 months ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆46Updated 2 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆70Updated this week
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated last year
• sckg / sckg
  Security Control Knowledge Graph
  ☆28Updated last year
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆44Updated 9 months ago
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated 2 years ago
• oasis-tcs / tac-ontology
  OASIS-TAC-TC: OWL representation of the TAC TCs work products are maintained here. - https://github.com/oasis-tcs/tac-ontology
  ☆15Updated 3 years ago
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆153Updated this week
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆61Updated last year
• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆32Updated 10 months ago
• COVAIL / MITRE_NIST
  A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data
  ☆26Updated 6 years ago
• mitre / CICAT
  ☆19Updated 4 years ago
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆27Updated 3 years ago
• oasis-open / csaf-documentation
  OASIS TC Open Repository: A GitHub repository for management of non-normative information about the work of the CSAF Technical Committee,…
  ☆20Updated 2 weeks ago
• GSA / threat-analysis
  ☆15Updated 3 years ago
• usnistgov / NIST-Tech-Pubs
  XML metadata for NIST Technical Series Publications
  ☆27Updated 3 weeks ago
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆28Updated 2 years ago
• w8mej / Threat_Modeling_Bank
  A curated threat modeling library collection
  ☆22Updated last year
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆50Updated 2 weeks ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆67Updated 2 weeks ago
• d3fend / d3fend
  Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology
  ☆83Updated 2 months ago
• jgamblin / cve.icu
  CVE.ICU code.
  ☆42Updated this week
• oasis-open / cti-sep-repository
  OASIS TC Open Repository: STIX Enhancement Proposals (SEPs) https://github.com/oasis-open/cti-sep-repository
  ☆16Updated 2 years ago
• usnistgov / BF
  Bugs Framework
  ☆8Updated last month
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated last year
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆10Updated last year
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆31Updated 2 years ago
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 3 years ago