PyPI Stats

Search Packages

Find Python packages by name, description, GitHub topic, or filter by metrics
anthonyharrison
lib4vex

Library to ingest and generate VEX documents

46K 20 4
anthonyharrison
csaf-tool

CSAF generator and validator

33K 9 3
aboutcode-org
univers

Parse and compare package versions and ranges. From debian, npm, pypi, ruby and more. Process all the version range specs and expressions. This project is sponsored by an NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ , the Google Summer of Code, nexB and others generous sponsors!

26K 45 21
sonatype-nexus-community
jake

Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.

21K 132 22
ochronasec
ochrona

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

18K 51 8
intel
cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

16K 2K 619
aquasecurity
kube-hunter

Hunt for security weaknesses in Kubernetes clusters

13K 5K 606
sonatype-nexus-community
ossindex-lib

Python library for querying OSS Index

12K 2 4
google
clusterfuzz

Scalable fuzzing infrastructure.

11K 6K 613
ohaswin
pyscan-rs

python dependency vulnerability scanner, written in Rust.

10K 242 8
aboutcode-org
aboutcode-pipeline

ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Commission, NLnet NGI0, the Google Summer of Code, nexB and others generous sponsors!

8K 201 191
twu
skjold

Security audit Python project dependencies against security advisory databases.

8K 67 13
wordfence
wordfence

Wordfence malware and vulnerability scanner command line utility.

4K 151 31
aboutcode-org
scancodeio

ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Commission, NLnet NGI0, the Google Summer of Code, nexB and others generous sponsors!

4K 201 191
vanschelven
fpvs

Fast Python Vulnerability Scanner

2K 2 0
aboutcode-org
aboutcode-api-auth

No description available

2K 44 20
shenxianpeng
pipguard

Scan Python packages for supply chain attacks before installing them

2K 1 0
tilakthimmappa
pyraider

Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities database.

1K 18 0
opencve
opencve

CVE Alerting Platform

1K 3K 313
metlo-labs
metlo

Metlo is an open-source API security platform.

1K 2K 106
productaize
bogrod

Manage SBOM and VEX like source code

735 22 3
xPloits3c
dorkeye

Automated Google Dorking Tool. Generates and runs advanced search queries for exposed files. It also test Vulns, Analyzes and extracts metadata

520 123 19
flyingcircusio
vulnix

Scans a Nix store for derivations that are affected by vulnerabilities.

493 754 45
damiencarol
vulnerabilities

Python framework to manipulate vulnerabilities.

460 7 4