Alternatives and similar repositories for osv-scanner:

Users that are interested in osv-scanner are comparing it to the libraries listed below

• google / osv.dev
  Open source vulnerability DB and triage service.
  ☆1,785Updated this week
• anchore / grype
  A vulnerability scanner for container images and filesystems
  ☆9,584Updated this week
• anchore / syft
  CLI tool and library for generating a Software Bill of Materials from container images and filesystems
  ☆6,744Updated this week
• projectdiscovery / nuclei
  Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…
  ☆22,693Updated this week
• teler-sh / teler
  Real-time HTTP Intrusion Detection
  ☆3,046Updated last year
• projectdiscovery / katana
  A next-generation crawling and spidering framework.
  ☆13,218Updated this week
• Bearer / bearer
  Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
  ☆2,239Updated this week
• aquasecurity / trivy
  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
  ☆25,104Updated this week
• gitleaks / gitleaks
  Find secrets with Gitleaks 🔑
  ☆19,337Updated this week
• semgrep / semgrep
  Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
  ☆11,379Updated this week
• securego / gosec
  Go security checker
  ☆8,101Updated this week
• future-architect / vuls
  Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
  ☆11,247Updated this week
• owasp-amass / amass
  In-depth attack surface mapping and asset discovery
  ☆12,669Updated this week
• projectdiscovery / httpx
  httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
  ☆8,253Updated last week
• projectdiscovery / subfinder
  Fast passive subdomain enumeration tool.
  ☆11,380Updated last week
• ossf / scorecard
  OpenSSF Scorecard - Security health metrics for Open Source
  ☆4,823Updated this week
• bee-san / RustScan
  🤖 The Modern Port Scanner 🤖
  ☆15,991Updated last week
• falcosecurity / falco
  Cloud Native Runtime Security
  ☆7,712Updated last week
• ffuf / ffuf
  Fast web fuzzer written in Go
  ☆13,652Updated 8 months ago
• owasp-dep-scan / dep-scan
  OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …
  ☆1,077Updated this week
• 0xInfection / Awesome-WAF
  🔥 Web-application firewalls (WAFs) from security standpoint.
  ☆6,559Updated 5 months ago
• projectdiscovery / nuclei-templates
  Community curated list of templates for the nuclei engine to find security vulnerabilities.
  ☆9,893Updated this week
• DefectDojo / django-DefectDojo
  DevSecOps, ASPM, Vulnerability Management. All on one platform.
  ☆3,935Updated this week
• projectdiscovery / uncover
  Quickly discover exposed hosts on the internet using multiple search engines.
  ☆2,546Updated 2 weeks ago
• dependency-check / DependencyCheck
  OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependen…
  ☆6,814Updated this week
• dstotijn / hetty
  An HTTP toolkit for security research.
  ☆6,691Updated last month
• infobyte / faraday
  Open Source Vulnerability Management Platform
  ☆5,313Updated 2 weeks ago
• corazawaf / coraza
  OWASP Coraza WAF is a golang modsecurity compatible web application firewall library
  ☆2,519Updated this week
• OpenCTI-Platform / opencti
  Open Cyber Threat Intelligence Platform
  ☆7,105Updated this week
• projectdiscovery / cvemap
  Navigate the CVE jungle with ease.
  ☆1,916Updated 2 weeks ago