osv
vulnerablecode
osv | vulnerablecode | |
---|---|---|
1 | 2 | |
1,325 | 476 | |
- | 1.9% | |
10.0 | 8.6 | |
4 months ago | 1 day ago | |
Python | Python | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
osv
-
Differ: Tool for testing and validating transformed programs
https://google.github.io/clusterfuzz/setting-up-fuzzing/libf...
> OSS-Fuzz runs CloudFuzz[Lite?] for many open source repos and feeds OSV OpenSSF Vulnerability Format: https://github.com/google/osv#current-data-sources
.
Google/syzkaller https://github.com/google/syzkaller :
>> syzkaller is an unsupervised coverage-guided kernel fuzzer. Supported OSes: Akaros, FreeBSD, Fuchsia, gVisor, Linux, NetBSD, OpenBSD, Windows
.
ghidra-patchdiff-correlator:
vulnerablecode
-
SBOM with VulnerableCode.io
$ git clone https://github.com/nexB/vulnerablecode.git $ cd vulnerablecode $ make envfile $ docker-compose build
- CVE Alerting Platform
What are some alternatives?
CompCert - The CompCert formally-verified C compiler
opencve - CVE Alerting Platform
Regshot - Regshot is a small, free and open-source registry compare utility that allows you to quickly take a snapshot of your registry and then compare it with a second one - done after doing system changes or installing a new software product
flake8-bandit - Automated security testing using bandit and flake8.
x509-limbo - A suite of testvectors for X.509 certificate path validation and tools for building them
vulscan - Advanced vulnerability scanning with Nmap NSE
CVE-2021-37740 - PoC for DoS vulnerability CVE-2021-37740 in firmware v3.0.3 of SCN-IP100.03 and SCN-IP000.03 by MDT. The bug has been fixed in firmware v3.0.4.
Jira-Lens - Fast and customizable vulnerability scanner For JIRA written in Python
grype - A vulnerability scanner for container images and filesystems
Heartbleed - Heartbleed vulnerability exploited 🩸
jake - Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
nerve - NERVE Continuous Vulnerability Scanner