Alternatives and similar repositories for vulntology:

Users that are interested in vulntology are comparing it to the libraries listed below

• OWASP / OdTM
  OWASP Ontology-driven Threat Modelling framework
  ☆37Updated last year
• sckg / sckg
  Security Control Knowledge Graph
  ☆27Updated 10 months ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated last year
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆24Updated last year
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆24Updated 2 years ago
• COVAIL / MITRE_NIST
  A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data
  ☆26Updated 5 years ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆63Updated last month
• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆29Updated 6 months ago
• mnemonic-no / provreq
  Adversary Emulation Planner
  ☆38Updated 8 months ago
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆139Updated this week
• mitre / CICAT
  ☆19Updated 4 years ago
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆29Updated 2 years ago
• oasis-open / cti-stix-generator
  OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…
  ☆41Updated 10 months ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆43Updated 6 months ago
• anchore / nvd-data-overrides
  ☆47Updated this week
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆49Updated this week
• usnistgov / BF
  Bugs Framework
  ☆7Updated this week
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated last year
• mitre / human
  Caldera plugin to deploy "humans" to emulate user behavior on systems
  ☆27Updated 10 months ago
• kannkyo / nvd-api
  NVD API 2.0 for python
  ☆12Updated 5 months ago
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆49Updated 8 months ago
• usnistgov / NIST-Tech-Pubs
  XML metadata for NIST Technical Series Publications
  ☆25Updated this week
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated last year
• jgamblin / cve.icu
  CVE.ICU code.
  ☆39Updated this week
• idaholab / EMV
  Exploit, Malware and Vulnerability Scoring Application
  ☆11Updated last year
• opencybersecurityalliance / documentation
  OCA-wide documentation shared by all sub-projects and repositories
  ☆33Updated 4 months ago
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆57Updated 11 months ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆62Updated last week
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆91Updated last month