vulnerability-databases

Open-source projects categorized as vulnerability-databases
Edit details
Language: + Python + HTML + Lua
Topics: Security vulnerability-scanners Vulnerability vulnerability-management security-tools
Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com
featured

Top 5 vulnerability-database Open-Source Projects

  • django-DefectDojo

    DevSecOps, ASPM, Vulnerability Management. All on one platform.

  • vulscan

    Advanced vulnerability scanning with Nmap NSE

    • Project mention: Scanning ports and finding network vulnerabilities using nmap | dev.to | 2023-12-01

    Few people know that nmap is not just for reconnaissance work. Among other things, it allows finding vulnerabilities based on scripts prepared by the community and the tool's developers. Examples include nmap-vulners, vulscan or already prepared scripts that are installed along with nmap.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • osv.dev

    Open source vulnerability DB and triage service.

    • Project mention: Magika: AI powered fast and efficient file type identification | news.ycombinator.com | 2024-02-15

    Is it safe to assume that hashing (1) every file on disk, or (2) any given file on disk at random, will yield random bits with uniform probability; and (3) why Argon2 instead of e.g. only two rounds of SHA256?

    https://github.com/google/osv.dev/blob/master/README.md#usin... :

    > We provide a Go based tool that will scan your dependencies, and check them against the OSV database for known vulnerabilities via the OSV API. ... With package metadata, not (a file hash, package) database that could be generated from OSV and the actual package files instead of their manifest of already-calculated checksums.

    Might as well be heating a pool on the roof with all of this waste heat from hashing binaries build from code of unknown static and dynamic quality.

    Add'l useful formats:

    > Currently it is able to scan various lockfiles, debian docker containers, SPDX and CycloneDB SBOMs, and git repositories

  • vulnerablecode

    A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

  • vulnerability-lookup

    Vulnerability lookup

    • Project mention: Vulnerability-Lookup | news.ycombinator.com | 2024-03-30

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

vulnerability-databases related posts

  • Any open source projects where we can learn Django by doing?

    1 project | /r/djangolearning | 5 Feb 2023

  • Running DefectDojo as a Swarm Stack?

    1 project | /r/portainer | 13 Jul 2022

  • DefectDojo

    1 project | /r/devopspro | 6 Mar 2022

Index

What are some of the best open-source vulnerability-database projects? This list will help you:

Project Stars
1 django-DefectDojo 3,428
2 vulscan 3,342
3 osv.dev 1,416
4 vulnerablecode 476
5 vulnerability-lookup 51

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com