Alternatives and similar repositories for lunasec

Users that are interested in lunasec are comparing it to the libraries listed below

• google / log4jscanner
  A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.
  ☆1,567Updated 2 years ago
• owasp-dep-scan / dep-scan
  OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …
  ☆1,117Updated last week
• DataDog / stratus-red-team
  Granular, Actionable Adversary Emulation for the Cloud
  ☆2,029Updated this week
• ossf / package-analysis
  Open Source Package Analysis
  ☆834Updated last month
• cisagov / log4j-affected-db
  A community sourced list of log4j-affected software
  ☆1,125Updated 2 years ago
• google / osv.dev
  Open source vulnerability DB and triage service.
  ☆1,892Updated this week
• slsa-framework / slsa
  Supply-chain Levels for Software Artifacts
  ☆1,670Updated this week
• matanolabs / matano
  Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
  ☆1,562Updated 4 months ago
• SummitRoute / csp_security_mistakes
  This repo has been replaced by https://www.cloudvulndb.org
  ☆726Updated 2 years ago
• BishopFox / cloudfox
  Automating situational awareness for cloud penetration tests.
  ☆2,123Updated 2 months ago
• corretto / hotpatch-for-apache-log4j2
  An agent to hotpatch the log4j RCE from CVE-2021-44228.
  ☆492Updated 2 years ago
• Neo23x0 / log4shell-detector
  Detector for Log4Shell exploitation attempts
  ☆731Updated 3 years ago
• devops-kung-fu / bomber
  Scans Software Bill of Materials (SBOMs) for security vulnerabilities
  ☆570Updated 2 months ago
• cisagov / log4j-scanner
  log4j-scanner is a project derived from other members of the open-source community by CISA to help organizations identify potentially vul…
  ☆1,280Updated 2 years ago
• opencve / opencve
  Open-source CVE monitoring and alerting platform
  ☆2,021Updated 3 weeks ago
• ossf / allstar
  GitHub App to set and enforce security policies
  ☆1,330Updated this week
• anchore / grype
  A vulnerability scanner for container images and filesystems
  ☆9,924Updated this week
• anchore / syft
  CLI tool and library for generating a Software Bill of Materials from container images and filesystems
  ☆7,069Updated this week
• CycodeLabs / raven
  CI/CD Security Analyzer
  ☆659Updated 3 months ago
• proferosec / log4jScanner
  log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services
  ☆488Updated 2 years ago
• Shuffle / Shuffle
  Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
  ☆1,959Updated this week
• metlo-labs / metlo
  Metlo is an open-source API security platform.
  ☆1,647Updated 2 weeks ago
• fullhunt / log4j-scan
  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
  ☆3,419Updated 2 years ago
• Puliczek / CVE-2021-44228-PoC-log4j-bypass-words
  🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
  ☆945Updated 3 years ago
• OWASP / threat-dragon
  An open source threat modeling tool from OWASP
  ☆1,112Updated this week
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆842Updated last year
• hillu / local-log4j-vuln-scanner
  Simple local scanner for vulnerable log4j instances
  ☆375Updated 2 years ago
• ocsf / ocsf-schema
  OCSF Schema
  ☆687Updated this week
• google / tsunami-security-scanner-plugins
  This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.
  ☆909Updated last week
• huntresslabs / log4shell-tester
  ☆363Updated 2 years ago