Alternatives and similar repositories for blackduck-docker-inspector

Users that are interested in blackduck-docker-inspector are comparing it to the libraries listed below

• blackducksoftware / detect
  Scanning and analysis for Black Duck SCA products.
  ☆180Updated last week
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆72Updated last month
• aquasecurity / docker-bench
  Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark
  ☆220Updated 6 months ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• aquasecurity / fanal
  Static Analysis Library for Containers
  ☆198Updated 2 years ago
• secureCodeBox / secureCodeBox-v2
  This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.
  ☆24Updated 4 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆149Updated 4 months ago
• blackducksoftware / hub
  Black Duck Docker Orchestration Files/Documentation
  ☆124Updated 3 weeks ago
• k8s-sec / k8s-sec.github.io
  Links and resources for the O'Reilly Kubernetes Security book
  ☆98Updated 4 years ago
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆138Updated 3 weeks ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
  ☆46Updated 8 months ago
• octarinesec / kccss
  Kubernetes Common Configuration Scoring System
  ☆123Updated 3 years ago
• anchore / ci-tools
  Contains scripts for running anchore engine in CI pipelines
  ☆34Updated 3 years ago
• anchore / harbor-scanner-adapter
  Harbor Scanner Adapter for Anchore Engine and Enterprise
  ☆39Updated last week
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆60Updated 2 months ago
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆110Updated 6 years ago
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆101Updated last month
• OWASP / www-project-kubernetes-security-testing-guide
  OWASP Kubernetes Security Testing Guide
  ☆38Updated 11 months ago
• rht-labs / owasp-zap-openshift
  A Docker build for OWASP Zed Attack Proxy to be used in CI/CD pipelines
  ☆28Updated 5 years ago
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆200Updated 4 months ago
• quay / claircore
  foundation modules for scanning container packages and reporting vulnerabilities
  ☆147Updated last week
• anchore / anchore-cli
  Simple command-line client to the Anchore Engine service
  ☆114Updated last year
• jenkinsci / checkmarx-plugin
  This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.
  ☆43Updated last month
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆195Updated 3 weeks ago
• aquasecurity / harbor-scanner-aqua
  Aqua Enterprise scanner as a plug-in vulnerability scanner in the Harbor registry
  ☆36Updated 10 months ago
• ShiftLeftSecurity / scan-action
  ☆53Updated 3 years ago
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆118Updated this week
• jenkinsci / zap-plugin
  The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
  ☆60Updated 10 months ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆46Updated last month
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 6 years ago