CVE / Security Bulletins / Vulnerabilities
CVE® is a list of entries—each containing an identification number, a description, and at least one public reference—for publicly known cybersecurity vulnerabilities. CVE Entries are used in numerous cybersecurity products and services from around the world, including the U.S. National Vulnerability Database (NVD).
cvedetails.com / twitter: none / RSS-Newsletters: none / API: no / country: US
www.cvedetails.com provides an easy to use web interface to CVE vulnerability data. You can browse for vendors, products and versions and view cve entries, vulnerabilities, related to them. You can view statistics about vendors, products and versions of products.
Number 1 vulnerability database worldwide with more than 112000 entries available. Our specialists work with the crowd-based community to document the latest vulnerabilities on a daily basis since 1970. Besides technical details there are additional threat intelligence information like current risk levels and exploit price forecasts provided.
The Information Technology Laboratory (ITL), one of seven research laboratories within the National Institute of Standards and Technology (NIST), is a measurement and testing laboratory encompassing a wide range of areas of computer science, mathematics, statistics, and systems engineering. ITL collaborates with other NIST laboratories, the Department of Commerce, government agencies, the private sector, standards development organizations, and other national and international stakeholders to develop and implement standards, tests, and metrics. The standards and metrics developed help make information systems more secure, usable, interoperable, and reliable. The resulting measurement and standards infrastructure accelerates innovation in IT and IT-related measurement science, which drive progress across scientific, technology, and commercial applications.
Any hacker will tell you that the latest news and exploits are not found on any web site—not even Insecure.Org. No, the cutting edge in security research is and will continue to be the full disclosure mailing lists such as Bugtraq. Here we provide web archives and RSS feeds (now including message extracts), updated in real-time, for many of our favorite lists.
oss-security.openwall.org / twitter: / RSS-Newsletters: / API: no / country: US
This wiki provides information on a variety of open source security resources and “best practices” information.
Vulnerability Notes Database – Advisory and mitigation information about software vulnerabilities.
The Vulnerability Canter provides access to the Skybox Vulnerability Database, culling intelligence from 25+ sources, focusing on 1000+ products used in enterprise-scale networks.