Cve Python Packages

nvdlib

A simple wrapper for the National Vulnerability CVE/CPE API

110K 114 33

ca9

Open source Python CVE reachability analysis for evidence-backed SCA triage. Turn Snyk, Dependabot, Trivy, pip-audit, and OSV alerts into fix, suppress, or investigate decisions.

69K 5 0

appthreat-vulnerability-db

Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers.

27K 140 22

cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

21K 2K 621

owasp-depscan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

18K 1K 131

ds-analysis-lib

15K 1K 131

ds-xbom-lib

15K 1K 131

ds-reporting-lib

15K 1K 131

safecadence-netrisk

SafeCadence Network Risk — local-first infrastructure + identity policy platform. 45 adapters (40 infra + 5 identity), 22 controls, 16 multi-vendor translators, capability-based RBAC, AI policy intelligence, attack-path graph, KEV+EPSS-prioritized CVEs, cross-system drift detection. MIT, BYO-AI.

11K 0 0

gcve

A Python client for the Global CVE Allocation System.

10K 18 2

pyscan-rs

python dependency vulnerability scanner, written in Rust.

10K 246 9

filelock-lts

Filelock LTS: Security patches for CVEs and long-term support for unsupported Python versions (3.7-3.9).

7K 3 0

appthreat-depscan

6K 1K 131

urllib3-lts

Long-Term Support (LTS) security fork of urllib3 with backported CVE fixes for Python 3.7 and 3.8.

6K 1 0

cvelib

A Python library and command line interface for CVE Services.

5K 69 28

aboutcode-hashid

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

4K 664 304

aboutcode-federated

Federated data utilities

4K 664 304

malwoverview

Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, IPInfo, Shodan, AbuseIPDB, GreyNoise, URLScan.io, Whois/RDAP, NIST, and VulnCheck. Supports LLM enrichment, IOC extraction, YARA scanning, and Android analysis.

4K 4K 528

faradaysec

Open Source Vulnerability Management Platform

4K 6K 1K

telegramsight

A client that retrieves vulnerability observations from a Telegram collector and pushes them to a Vulnerability-Lookup instance.

3K 2 0

fedivuln

A client to gather vulnerability-related information from the Fediverse.

3K 11 0

embedxpl

Embedded Device Security Assessment Framework — 700 modules, 350 CVEs, 55 vendors, APT Group Engine. Covers routers, IP cameras, GPON ONTs, ISP CPEs, IoT/embedded edge.

3K 6 3

filelock-lts-py38

Filelock LTS: Security patches for CVEs and long-term support for unsupported Python versions (3.7-3.9).

3K 3 0

cve-prioritizer

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay informed about the latest trends.

3K 699 95