gsd-tools
Global Security Database Tools (by CloudSecurityAlliance)
cvelist
Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023 (by CVEProject)
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
gsd-tools
Posts with mentions or reviews of gsd-tools.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-04-17.
-
Rage about CVE dataset quality(?)
SQL won't prevent data errors any more than using JSON, you can have schema validation and the exact same data validation tooling, which we'd be more than happy to have, if you want to build this simply submit PR's against the tools repo: https://github.com/cloudsecurityalliance/gsd-tools
cvelist
Posts with mentions or reviews of cvelist.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-05-22.
-
Understanding CVE Reports
CVEs are currently published based off a JSON format specification. Here's an example of an entry for CVE-2023-0038 hosted on the CVE Database in GitHub:
-
"Mirror" of the soon to be deprecated NIST NVD CVE Feeds
Deprecation notice is pending: https://github.com/CVEProject/cvelist/pull/8855/files
-
Rage about CVE dataset quality(?)
The upcoming v5 format is here: https://github.com/CVEProject/cvelist
What are some alternatives?
When comparing gsd-tools and cvelist you can also consider the following projects:
cve-schema - This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published here. This repository is managed by the CVE Quality Working Group.
opencve - CVE Alerting Platform
Loki - Loki - Simple IOC and YARA Scanner
nvd-json-data-feeds - Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endorsed nor certified by the NVD.
cvelistV5 - CVE cache of the official CVE List in CVE JSON 5.0 format