LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
☆1,465May 2, 2024Updated last year
Alternatives and similar repositories for lunasec
Users that are interested in lunasec are comparing it to the libraries listed below
Sorting:
- A vulnerability scanner for container images and filesystems☆11,680Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,435Mar 2, 2026Updated last week
- A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228☆3,436Nov 23, 2022Updated 3 years ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆32,947Updated this week
- Open Source Vulnerability Management Platform☆6,290Feb 13, 2026Updated 3 weeks ago
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆13,160Updated this week
- Operational information regarding the log4shell vulnerabilities in the Log4j logging library.☆1,889Jun 15, 2022Updated 3 years ago
- Cloud Security Posture Management (CSPM)☆3,711Feb 23, 2026Updated 2 weeks ago
- Find, verify, and analyze leaked credentials☆24,933Updated this week
- ☆2,079Dec 13, 2021Updated 4 years ago
- Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)☆439Dec 27, 2022Updated 3 years ago
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆14,881Updated this week
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆14,350Updated this week
- Open Source Cloud Native Application Protection Platform (CNAPP)☆5,236Feb 28, 2026Updated last week
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,658Jan 8, 2025Updated last year
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆27,300Mar 2, 2026Updated last week
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,200Nov 20, 2025Updated 3 months ago
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,052Updated this week
- Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.☆2,590Updated this week
- RedEye is a visual analytic tool supporting Red & Blue Team operations☆2,740Oct 20, 2023Updated 2 years ago
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,561Updated this week
- A community sourced list of log4j-affected software☆1,124Nov 9, 2022Updated 3 years ago
- In-depth attack surface mapping and asset discovery☆14,222Updated this week
- An OOB interaction gathering server and client library☆4,218Updated this week
- 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks☆950Jan 15, 2022Updated 4 years ago
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆12,015Updated this week
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆8,529Updated this week
- A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-syst…☆640Mar 10, 2022Updated 3 years ago
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,631Updated this week
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,503Nov 16, 2025Updated 3 months ago
- Fast passive subdomain enumeration tool.☆13,192Updated this week
- a drop-in replacement for Nmap powered by shodan.io☆3,187May 1, 2025Updated 10 months ago
- An agent to hotpatch the log4j RCE from CVE-2021-44228.☆496Oct 24, 2022Updated 3 years ago
- Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…☆11,226Updated this week
- A collection of awesome security hardening guides, tools and other resources☆6,203Jan 20, 2026Updated last month
- Find secrets with Gitleaks 🔑☆25,185Feb 21, 2026Updated 2 weeks ago
- Open Cyber Threat Intelligence Platform☆8,960Updated this week
- OpenSSF Scorecard - Security health metrics for Open Source☆5,290Updated this week
- Multi-Cloud Security Auditing Tool☆7,562Sep 23, 2025Updated 5 months ago