nvd

There are 6 repositories under nvd topic.

• dependency-track

  DependencyTrack / dependency-track

  Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

  appsecbill-of-materialsbomcomponent-analysiscyclonedxdevsecopshacktoberfestnvdossindexowasppackage-urlpurlsbomscasecuritysecurity-automationsoftware-composition-analysissoftware-securityvulnerabilitiesvulnerability-detection
  Language:Java 3350

• opencve / opencve

  Vulnerability Intelligence Platform

  cvevulnerabilitiessecurity-toolsnvdpythondjangomitrecybersecurityinfosecvulnerability-management
  Language:Python 2312
• CVE_Prioritizer

  TURROKS / CVE_Prioritizer

  Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.

  cisa-kevcvecvssepssnistnvdpatchingvulnerability-management
  Language:Python 677

• dependency-check / dependency-check-sonar-plugin

  Integrates Dependency-Check reports into SonarQube

  owaspsonar-pluginnvdvulnerabilitiescomponent-analysissecurityvisibilityappsecsonarqubevulnerable-componentssoftware-security
  Language:Java 672

• aboutcode-org / vulnerablecode

  A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

  cpecvecvssnvdossindexosvpackage-urlpurlsecuritysecurity-toolssnykvulndbvulnerabilityvulnerability-databasevulnerability-databasesvulnerability-detectionvulnerability-identificationvulnerability-scanners
  Language:Python 637

• facebookincubator / nvdtools

  A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)

  golangnvdsecurityvulnerability-managementunix-tools
  Language:Go 467

• albuch / sbt-dependency-check

  SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:

  sbtsbt-pluginowasp-dependencycheckcvescalavulnerabilitiesnvdappsecsoftware-securitysecurityowaspstatic-analysisvulnerability-scannerssoftware-composition-analysissecurity-automationsecurity-auditdevsecopsinfosecdevops
  Language:Scala 269

• fabric8-analytics / fabric8-analytics-vscode-extension

  Red Hat Dependency Analytics extension

  dependency-analyticssecurity-vulnerabilityinsightscvenvdonline-flowide-extension
  Language:TypeScript 246

• hi-KK / VulDB_Spider

  vulnerability database spider 爬取NVD、CNVD、CNNVD等漏洞数据库

  vulnerability-databasescnvdcnnvdnvdpythonpyspider
  Language:Python 230

• clearlinux / cve-check-tool

  Original Automated CVE Checking Tool

  cvevulnerabilityxmlnvddatabase
  Language:C 212

• stevespringett / nist-data-mirror

  A simple Java command-line utility to mirror the CVE JSON data from NIST.

  appsecnvdsoftware-securitynistcpecvejavasoftware-composition-analysissca
  Language:Java 211
• Vulnogram

  Vulnogram / Vulnogram

  Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterprise features.

  cvevulnerabilitycve-jsoncvsscwecvssv3securitysecurity-toolssecurity-automationsecurity-vulnerabilityjsonnvd
  Language:JavaScript 207

• jenkinsci / dependency-check-plugin

  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

  owaspappsecsecuritycomponent-analysisnvdvulnerabilitiesvisibilityjenkins-pluginsoftware-securitydevopsowasp-dependencycheck
  Language:Java 138

• AppThreat / vulnerability-db

  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers.

  vulnerability-detectioncvevulnerability-databasenvdcliscaadvisoriesdatabasepurlvers
  Language:Python 129
• nvdlib

  vehemont / nvdlib

  A simple wrapper for the National Vulnerability CVE/CPE API

  pythoncvelibrarynvdnistvulnerabilitypython3nvdlibwrapperapi
  Language:Python 108

• security-commits / security-patches-dataset

  ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV); tools to automatically update the data are provided.

  datasetsecuritypatchesnvdcve-details-scrapercve-detailsosv
  Language:Jupyter Notebook 98

• SpiderLabs / cve_server

  Simple REST-style web service for the CVE searching

  nvdcvssv3cvssv2cvecpecve-serverrubydatabaseapi-restapiapi-servercvss
  Language:Ruby 97

• ozanunal0 / viper

  🛡️ VIPER: Stay ahead of threats with AI-driven vulnerability intelligence. Prioritize CVEs effectively using NVD, EPSS, CISA KEV, and Google Gemini insights, all on an interactive dashboard

  aicisa-kevcvecybersecurityepssllmnvdpythonthreat-intelligencevulnerability-managementclaude-desktopmcpollama
  Language:Python 79

• fkie-cad / iva

  IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to search for CVEs related to a software product.

  cpecvevulnerability-analysisvulnerability-scannersnvdcve-matchivasoftware-inventorysoftware-vulnerability
  Language:Python 67

• binareio / FastCVE

  FastCVE: A Dockerized CVE search tool with API and CLI support for security vulnerability queries.

  capeccpecvecwedockerepsskevnvdsearchsecurity-toolsvulnerability-scanner
  Language:Python 57

• jay-johnson / owasp-jenkins

  Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ansible and docker? :whale: :shield: :lock:

  owaspdockeransiblepythonnvdjenkinssecuritysecurity-vulnerabilitysecurity-automationsecurity-testingdependency-checkernational-vulnerability-databasenodereactvuetensorflowdjangoruby-on-railszapc-sharp
  Language:Shell 55

• RoyZry98 / RepCaM-Pytorch

  [TMC 2025/NOSSDAV 2023] Official code for RepCaM++ and RepCaM: Re-parameterization Content-aware Modulation for Neural Video Delivery

  nvdreparameterization
  Language:Python 54

• stevespringett / CPE-Parser

  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST

  nistmitrecpenvdjavalibrary
  Language:Java 53

• jgamblin / CVElk

  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data

  epssnvdcve
  Language:Python 52

• W01fh4cker / Serein_Linux

  【Lazy Artifact】A graphical tool that collects urls in batches, and performs various nday detections on the collected urls in batches. It can be used for src mining, cnvd mining, 0day exploitation, building your own arsenal and other scenarios.

  cve-2022-26134autopythonpython3srcguitool0daycnvdcvenvdzerodaycve-2022-29464
  Language:Python 48

• RogoLabs / cve.icu

  CVE.ICU code.

  cvenvdvulnerabilities
  Language:HTML 47

• stevespringett / cvss-calculator

  A Java library for calculating CVSSv2 and CVSSv3 scores and vectors

  javanvdnistcvsscvssv2cvssv3library
  Language:Java 47

• ra1nb0rn / search_vulns

  Search for known vulnerabilities in software using software titles or a CPE 2.3 string

  cvenvdsecuritysecurity-researchexploit-searchexploitdbpentestpentest-toolssecurity-toolsvulnerabilityvulnerability-searchvulnerability-assessmentvulnerability-scanning
  Language:Python 44

• kppw99 / AutoVAS

  AutoVAS is an automated vulnerability analysis system with a deep learning approach.

  automated-vulnerability-analysisvulnerabilitiesdeep-learningsecurity-vulnerabilitiesnvd
  Language:C 35

• pandatix / nvdapi

  Unofficial but convenient Go wrapper around the NVD REST JSON API

  nvdapigocvecpenist
  Language:Go 35

• justakazh / CVE_Database

  The Common Vulnerabilities Exposures (CVE) Database

  0daycvecwedatabaseinfosecjsonnvdpentestersecurityvulnerabilitiesvulnerabilityzeroday
  32

• kunalnagarco / action-cve

  A GitHub action that sends Dependabot Vulnerability Alerts to multiple sources.

  github-actionsgithubcvevulnerabilityvulnerability-alertsalertcvssnvdslackactionspagerdutyincidentmicrosoft-teams
  Language:TypeScript 32

• jgamblin / KEV_EPSS

  KEV EPSS Data

  nvdcisacisa-kevcvsscvssv3epss
  Language:Jupyter Notebook 27

• nMoncho / sbt-dependency-check

  SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs).

  appseccvedevopsinfosecnvdowaspowasp-dependencychecksbtsbt-pluginscalasecuritysecurity-auditsecurity-automationsoftware-composition-analysissoftware-securitystatic-analysisvulnerabilitiesvulnerability-scanners
  Language:Scala 24

• Yuning-J / VulnerabilityClassifier

  Severity scoring and exploit categorisation for vulnerability reports using machine-learning tools.

  cvecvedetailscvsscvssv3cvssv2nvdmachine-learningtext-miningtext-classificationvulnerabilitycwecapecthreat-intelligence
  Language:Jupyter Notebook 24

• plasticuproject / nvd_api

  An unofficial, RESTful API for NIST's NVD

  nistnvdnist-databasecvecve-searchpythonflaskrest-apiapirestfulflask-restfulcvesnist-nvdnvd-apikeyword-searchkeywordrestful-apirestinfoseccyber-security
  Language:Python 23