anchore / grypeLinks
A vulnerability scanner for container images and filesystems
☆10,964Updated this week
Alternatives and similar repositories for grype
Users that are interested in grype are comparing it to the libraries listed below
Sorting:
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆7,913Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆29,674Updated last week
- Code signing and transparency for containers and binaries☆5,375Updated last week
- Vulnerability Static Analysis for Containers☆10,839Updated last week
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆7,997Updated this week
- Cloud Native Runtime Security☆8,356Updated last week
- Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…☆11,045Updated this week
- Tfsec is now part of Trivy☆6,914Updated this week
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,337Updated last week
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆7,783Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆4,964Updated last year
- Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start☆3,078Updated 10 months ago
- OpenSSF Scorecard - Security health metrics for Open Source☆5,127Updated this week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,502Updated this week
- Find, verify, and analyze leaked credentials☆23,054Updated this week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,188Updated 3 months ago
- Open source vulnerability DB and triage service.☆2,362Updated this week
- Dockerfile linter, validate inline bash, written in Haskell☆11,624Updated 2 weeks ago
- Linux Runtime Security and Forensics using eBPF☆4,236Updated this week
- Simple and flexible tool for managing secrets☆19,874Updated last week
- Cloud native secrets management for developers - never leave your command line for secrets.☆3,145Updated last year
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆13,233Updated this week
- Multi-Cloud Security Auditing Tool☆7,407Updated last month
- A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.☆13,109Updated last week
- Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.☆7,577Updated last week
- ⛑ Automated developer-oriented status page☆8,951Updated last week
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,340Updated this week
- The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in productio…☆9,516Updated last year
- 🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywher…☆7,813Updated this week
- eBPF-based Security Observability and Runtime Enforcement☆4,251Updated this week