google / osv-scannerLinks
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
☆8,344Updated last week
Alternatives and similar repositories for osv-scanner
Users that are interested in osv-scanner are comparing it to the libraries listed below
Sorting:
- Open source vulnerability DB and triage service.☆2,451Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,212Updated last week
- A vulnerability scanner for container images and filesystems☆11,391Updated this week
- Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.☆2,530Updated this week
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆26,535Updated last week
- Open device management☆5,913Updated this week
- A next-generation crawling and spidering framework.☆15,414Updated this week
- RedEye is a visual analytic tool supporting Red & Blue Team operations☆2,737Updated 2 years ago
- Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules…☆5,943Updated last year
- This repository contains the scanner component for Greenbone Community Edition.☆4,353Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆30,990Updated this week
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆13,862Updated this week
- OpenSSF Scorecard - Security health metrics for Open Source☆5,233Updated last week
- Find, verify, and analyze leaked credentials☆24,137Updated this week
- Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.☆2,238Updated 2 months ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,558Updated this week
- Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.☆2,105Updated this week
- Code signing and transparency for containers and binaries☆5,574Updated this week
- Find secrets with Gitleaks 🔑☆24,575Updated last week
- Real-time HTTP Intrusion Detection☆3,083Updated last year
- The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.☆1,961Updated last week
- Cloud Native Runtime Security☆8,575Updated this week
- OWASP Coraza WAF is a golang modsecurity compatible web application firewall library☆3,193Updated this week
- Go security checker☆8,619Updated this week
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,437Updated last week
- Granular, Actionable Adversary Emulation for the Cloud☆2,226Updated this week
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆11,793Updated this week
- Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.☆2,328Updated this week
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,197Updated 3 weeks ago
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,523Updated this week