google / osv-scanner
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
☆6,373Updated this week
Alternatives and similar repositories for osv-scanner:
Users that are interested in osv-scanner are comparing it to the libraries listed below
- Open source vulnerability DB and triage service.☆1,583Updated this week
- A vulnerability scanner for container images and filesystems☆9,243Updated this week
- OpenSSF Scorecard - Security health metrics for Open Source☆4,727Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆24,373Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆6,491Updated this week
- Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.☆1,789Updated this week
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆10,898Updated this week
- Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.☆2,144Updated this week
- Code signing and transparency for containers and binaries☆4,647Updated this week
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆5,006Updated this week
- A static analysis tool for securing Go code☆2,181Updated 11 months ago
- Real-time HTTP Intrusion Detection☆3,032Updated 11 months ago
- A versatile and portable proxy for capturing, manipulating, and replaying HTTP/HTTPS traffic on the go.☆2,749Updated this week
- Linux Runtime Security and Forensics using eBPF☆3,700Updated this week
- A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.☆1,569Updated 2 years ago
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆21,799Updated this week
- An OOB interaction gathering server and client library☆3,549Updated this week
- Supply-chain Levels for Software Artifacts☆1,580Updated this week
- OWASP Coraza WAF is a golang modsecurity compatible web application firewall library☆2,376Updated this week
- httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.☆7,984Updated this week
- Cloud Native Runtime Security☆7,524Updated this week
- GitHub App to set and enforce security policies☆1,269Updated this week
- Granular, Actionable Adversary Emulation for the Cloud☆1,884Updated this week
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,048Updated last month
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,140Updated this week
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for att…☆4,890Updated this week
- 📦 Make security testing of K8s, Docker, and Containerd easier.☆4,028Updated 2 months ago
- An HTTP toolkit for security research.☆6,174Updated this week
- Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock☆6,788Updated 10 months ago
- Vulnerability Static Analysis for Containers☆10,452Updated this week