lunasec-io / lunasec
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
☆1,444Updated 10 months ago
Alternatives and similar repositories for lunasec:
Users that are interested in lunasec are comparing it to the libraries listed below
- A community sourced list of log4j-affected software☆1,121Updated 2 years ago
- Automating situational awareness for cloud penetration tests.☆2,059Updated 2 weeks ago
- Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).☆1,116Updated 11 months ago
- A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.☆1,568Updated 2 years ago
- A vulnerability scanner for container images and filesystems☆9,608Updated this week
- log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services☆487Updated 2 years ago
- Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)☆436Updated 2 years ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆6,744Updated this week
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.☆1,896Updated last week
- Metlo is an open-source API security platform.☆1,638Updated 10 months ago
- ☆362Updated 2 years ago
- Operational information regarding the log4shell vulnerabilities in the Log4j logging library.☆1,896Updated 2 years ago
- An agent to hotpatch the log4j RCE from CVE-2021-44228.☆493Updated 2 years ago
- Hundreds of Offensive and Useful Docker Images for Network Intrusion. The name says it all.☆1,234Updated last year
- log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…☆1,279Updated 2 years ago
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,525Updated 2 months ago
- AWSGoat : A Damn Vulnerable AWS Infrastructure☆1,814Updated last month
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆919Updated this week
- CVE Alerting Platform☆1,944Updated this week
- A malicious LDAP server for JNDI injection attacks☆1,026Updated last year
- A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228☆3,411Updated 2 years ago
- Granular, Actionable Adversary Emulation for the Cloud☆1,965Updated last week
- Open Source Package Analysis☆823Updated 2 weeks ago
- Open source vulnerability DB and triage service.☆1,788Updated this week
- vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.☆1,216Updated 2 months ago
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring su…☆985Updated last month
- CI/CD Security Analyzer☆655Updated last month
- This repo has been replaced by https://www.cloudvulndb.org☆724Updated 2 years ago
- A security focused static analysis tool for Android and Java applications.☆1,122Updated this week
- Detector for Log4Shell exploitation attempts☆732Updated 3 years ago