cve-search - a tool to perform local searches for known vulnerabilities

Security automation content in SCAP, Bash, Ansible, and other formats

NIST Certified SCAP 1.2 toolkit

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and VEX

Mapping the information system / Cartographie du système d'information

A simple Java command-line utility to mirror the CVE JSON data from NIST.

PatrowlHears - Vulnerability Intelligence Center / Exploits

A suite of utilities to help with software supply chain challenges on nix targets

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

A suite of Chef cookbooks that we use to manage our fleet of client devices

The clever vulnerability dependency finder

Simple REST-style web service for the CVE searching

TeamsACS exclusively serves Mikrotik's TR069 ACS server

Repository for the IPvSeeYou talk at Black Hat 2021

IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to search for CVEs related to a software product.

Open Source Tool - Cybersecurity Graph Database in Neo4j

Homework, labs, tests for a variety of classes. Feel free to share. California State University, Sacramento

A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST

The knife of the Admin & Security auditor