Alternatives and similar repositories for lunasec

Users that are interested in lunasec are comparing it to the libraries listed below

• google / log4jscanner
  A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.
  ☆1,573Updated 3 years ago
• christophetd / log4shell-vulnerable-app
  Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).
  ☆1,129Updated last year
• cisagov / log4j-affected-db
  A community sourced list of log4j-affected software
  ☆1,124Updated 2 years ago
• huntresslabs / log4shell-tester
  ☆364Updated 2 years ago
• Neo23x0 / log4shell-detector
  Detector for Log4Shell exploitation attempts
  ☆729Updated 3 years ago
• ossf / package-analysis
  Open Source Package Analysis
  ☆855Updated 6 months ago
• Cybereason / Logout4Shell
  Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell
  ☆1,708Updated 3 years ago
• DataDog / stratus-red-team
  Granular, Actionable Adversary Emulation for the Cloud
  ☆2,179Updated 3 weeks ago
• cisagov / log4j-scanner
  log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…
  ☆1,281Updated 2 years ago
• BugAlertDotOrg / bugalert
  ☆207Updated last year
• hillu / local-log4j-vuln-scanner
  Simple local scanner for vulnerable log4j instances
  ☆374Updated 3 years ago
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆852Updated 2 years ago
• roottusk / vapi
  vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
  ☆1,302Updated 9 months ago
• owasp-dep-scan / dep-scan
  OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …
  ☆1,176Updated 3 weeks ago
• corretto / hotpatch-for-apache-log4j2
  An agent to hotpatch the log4j RCE from CVE-2021-44228.
  ☆495Updated 3 years ago
• fullhunt / log4j-scan
  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
  ☆3,434Updated 2 years ago
• YfryTchsGD / Log4jAttackSurface
  ☆2,077Updated 3 years ago
• NCSC-NL / log4shell
  Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
  ☆1,890Updated 3 years ago
• mergebase / log4j-detector
  A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-syst…
  ☆641Updated 3 years ago
• SummitRoute / csp_security_mistakes
  This repo has been replaced by https://www.cloudvulndb.org
  ☆725Updated 3 years ago
• OWASP / threat-dragon
  An open source threat modeling tool from OWASP
  ☆1,217Updated this week
• Shuffle / Shuffle
  Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
  ☆2,087Updated last week
• google / osv.dev
  Open source vulnerability DB and triage service.
  ☆2,352Updated this week
• BishopFox / cloudfox
  Automating situational awareness for cloud penetration tests.
  ☆2,229Updated this week
• fox-it / log4j-finder
  Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)
  ☆437Updated 2 years ago
• NCSC-NL / OpenSSL-2022
  Operational information regarding CVE-2022-3602 and CVE-2022-3786, two vulnerabilities in OpenSSL 3
  ☆532Updated 2 years ago
• google / tsunami-security-scanner-plugins
  This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.
  ☆940Updated 2 weeks ago
• opencve / opencve
  Vulnerability Intelligence Platform
  ☆2,302Updated 3 weeks ago
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆706Updated 2 months ago
• ossf / allstar
  GitHub App to set and enforce security policies
  ☆1,363Updated last week