Ivanti's recently publicized zero-day VPN has been used to compromise at least 1,700 devices, including government, telecom, defense, and technical devices.
836 
The world of cybersecurity is changing rapidly, and software vulnerabilities can emerge before vendors even know about them. Therefore, it is extremely important to have access to proven and fast-acting sources that can help you instantly assess the risks associated with new CVEs. In this review, we have collected the most relevant platforms for analyzing, tracking, and discussing vulnerabilities, exploits, and indicators of compromise.
Official CVE database with search, identifiers, verified descriptions, and classification for further security use.
An analytical platform with notifications, filters, tags, and the ability to create your own reports on new CVEs in real time.
Aggregator of information about vulnerabilities, exploits, patches, and research from numerous sources, conveniently filtered by type and CVSS.
A convenient search engine for databases of public exploits, frameworks, and tools for using found vulnerabilities.
The service, which ranks CVEs by number of mentions and popularity, allows you to track vulnerability trends on a daily basis.
A popular CVE-compliant exploit database that contains full script texts and usage examples.
A security advisory database that integrates with repositories and contains CVE data with remediation instructions.
A highly specialized vulnerability database for cloud providers, containing a summary of security issues in SaaS and IaaS infrastructure.
An open service with information about vulnerabilities in open source projects, supported by the community and automatically updated.
A developer-focused, open API database containing CVEs, fix recommendations, and patch history.
Vulnerabilities and exploits database, all exploits integrated into Metasploit. Support for CVSS, PoC, patches, attack vectors.
A universal vulnerability database that allows you to search, export, and use CVE information for commercial purposes.
A service for analyzing vulnerabilities in open-source projects, CI/CD pipelines, and containers, integrates with GitHub, GitLab, etc.
An educational project with code examples demonstrating the operation of a specific vulnerability and accompanied by explanations and fix code.
An aggregator of CVE discussions from decentralized social networks, providing summarized information about vulnerabilities: CVSS scores, description, links to forums.
836 
128 
1218