Alternatives and similar repositories for src-fingerprint

Users that are interested in src-fingerprint are comparing it to the libraries listed below

• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆27Updated this week
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆29Updated 2 months ago
• turbot / steampipe-mod-github-sherlock
  Interrogate your GitHub resources with the help of the world's greatest detectives: Powerpipe + Steampipe + Sherlock.
  ☆41Updated 5 months ago
• sonatype-nexus-community / ahab
  ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.
  ☆68Updated last week
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated 2 months ago
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆135Updated 2 months ago
• tldrrun / tools.tldr.run
  A curated list of security tools for Hackers & Builders!
  ☆98Updated last year
• cybeats / sbomgen
  List of SBOM Generation Tools
  ☆29Updated 10 months ago
• DefectDojo / godojo
  Golang installer for DefectDojo
  ☆29Updated last year
• GitGuardian / ggcanary
  GitGuardian Canary Tokens
  ☆147Updated 7 months ago
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆53Updated 3 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 5 years ago
• cisagov / certboto-docker
  Certbot container that stores its configuration in an AWS S3 bucket
  ☆15Updated last week
• cloud-gov / caulking
  A small utility that keeps your Git repositories from leaking secrets, skipping hooks, or quietly drifting out of compliance. It’s design…
  ☆34Updated last week
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• tenable / terrascan-rego-editor
  Visual Studio Code extension for writing Terrascan Rego policies
  ☆22Updated last year
• interlynk-io / sbommv
  SBOM Move - Automate build and transfer of SBOMs across systems
  ☆25Updated last week
• arnica-ext / GitGoat
  GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…
  ☆171Updated last year
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆75Updated 2 years ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆96Updated last year
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆22Updated 2 years ago
• chainguard-dev / github-audit-alerter
  Slack alert bot for matching Github Audit Events
  ☆10Updated last year
• anchore / grype-vscode
  Grype vulnerability check plugin for Visual Studio Code
  ☆24Updated last year
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆174Updated 4 years ago
• aquasecurity / saas-api-samples
  Sample code snippets for consuming the CloudSploit API
  ☆13Updated 2 years ago
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆40Updated 4 years ago
• CycloneDX / cyclonedx-web-tool
  A web based tool for working with CycloneDX BOMs
  ☆42Updated 2 months ago
• mhausenblas / aws-container-security-survey-2020
  AWS container security survey 2020
  ☆11Updated 5 years ago
• kannkyo / epss-api
  EPSS(Exploit Prediction Scoring System) API client
  ☆19Updated 3 months ago