VulnFeed alternatives

Looking for an alternative tool to replace VulnFeed? During the review of VulnFeed we looked at other open source tools. Based on their category, tags, and text, these are the ones that have the best match.

Top 3

  1. vFeed (vulnerability database and query engine)
  2. vulnerability-alerter (retrieve vulnerability data from NIST)
  3. SearchSploit (exploit search tool)

These tools are ranked as the best alternatives to VulnFeed.

Alternatives (by score)

78

vFeed

Introduction

vFeed consists of a database and utilities to store vulnerability data. It uses third-party references and data, which then can be used to see if a software component has a known vulnerability. The data itself is enriched by cross-checking it and store additional details about the vulnerabilities.

The vFeed tooling has an API available with JSON output. It can be used by security researchers and practitioners to validate vulnerabilities and retrieve all available details.

Project details

vFeed is written in Python.

Strengths and weaknesses

  • + Commercial support available
  • + The source code of this software is available

    Typical usage

    • Security assessment
    • Vulnerability scanning

    vFeed review

    60

    vulnerability-alerter

    Introduction

    Vulnerability-alerter is a security tool to retrieve vulnerability data from NIST's database (NVD). This data can be used to discover recent vulnerabilities.

    Project details

    vulnerability-alerter is written in Python.

    Strengths and weaknesses

    • + The source code of this software is available

      Typical usage

      • Vulnerability management
      • Vulnerability testing

      vulnerability-alerter review

      74

      SearchSploit

      Introduction

      SearchSploit is a small by OffensiveSecurity to search for exploits and related data in the exploit database (Exploit-DB). This may help penetration testers in their security assignments.

      Project details

      SearchSploit is written in shell script.

      Strengths and weaknesses

      • + The source code is easy to read and understand
      • + Tool is easy to use
      • + Used language is shell script
      • - Full name of author is unknown

      Typical usage

      • Information gathering
      • Penetration testing
      • Service exploitation
      • System exploitation
      • Vulnerability testing

      SearchSploit review

      60

      Pompem

      Introduction

      Pompem is written in Python and helps pentesters to search public sources for vulnerability information and a related exploit.

      Sources

      • CXSecurity
      • National Vulnerability Database
      • PacketStorm security
      • Vulners
      • WPScan Vulnerability Database
      • ZeroDay

      Project details

      Pompem is written in Python.

      Strengths and weaknesses

      • + The source code of this software is available

        Typical usage

        • Vulnerability scanning

        Pompem review

        64

        VulnWhisperer

        Introduction

        VulnWhisperer helps with the collection of vulnerability data and its reports. The goal of the tool is to make vulnerability data more actionable. It supports scans and data from products like Nessus, Qualys products, OpenVAS, and Tenable.io.

        Project details

        VulnWhisperer is written in Python.

        Strengths and weaknesses

        • + More than 10 contributors
        • + The source code of this software is available

          Typical usage

          • Vulnerability management
          • Vulnerability scanning

          VulnWhisperer review

          Some relevant tool missing as an alternative to VulnFeed? Please contact us with your suggestion.