OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
☆1,220Mar 9, 2026Updated 3 weeks ago
Alternatives and similar repositories for dep-scan
Users that are interested in dep-scan are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆932Updated this week
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆138Mar 10, 2026Updated 3 weeks ago
- blint is a Binary Linter that checks the security properties and capabilities of your executables. It can also generate a Software Bill-o…☆439Mar 24, 2026Updated last week
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆870Sep 1, 2023Updated 2 years ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆86Mar 17, 2026Updated 2 weeks ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,706Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆608Feb 10, 2026Updated last month
- Binary builds for dep-scan - The Dependency Scanner☆10Apr 1, 2024Updated 2 years ago
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆657Updated this week
- A vulnerability scanner for container images and filesystems☆11,900Mar 27, 2026Updated last week
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,596Mar 29, 2026Updated last week
- Utility that provides an API platform for validating, querying and managing BOM data☆133Jan 2, 2026Updated 3 months ago
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆8,607Mar 28, 2026Updated last week
- Open source vulnerability DB and triage service.☆2,560Updated this week
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,614Updated this week
- Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.☆2,605Mar 28, 2026Updated last week
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆23Updated this week
- 🔎 Static code analysis engine to find security issues in code.☆2,343Updated this week
- A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles☆573May 20, 2025Updated 10 months ago
- SBOM Search - Context aware search in SBOM repositories☆31Nov 24, 2025Updated 4 months ago
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆8,533Mar 21, 2026Updated 2 weeks ago
- OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependen…☆7,479Updated this week
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆14,652Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆696Jan 6, 2026Updated 2 months ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆150Sep 4, 2020Updated 5 years ago
- OXO is a security scanning orchestrator for the modern age.☆564Updated this week
- Open Source Vulnerability Management Platform☆6,311Feb 13, 2026Updated last month
- Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.☆1,022Mar 21, 2025Updated last year
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,449Jun 11, 2025Updated 9 months ago
- The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.☆2,007Mar 26, 2026Updated last week
- A suite of tools to automate software compliance checks.☆1,974Mar 28, 2026Updated last week
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,467Updated this week
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.☆2,228Mar 25, 2026Updated last week
- Hunt every Endpoint in your code, expose Shadow APIs, map the Attack Surface.☆1,153Mar 28, 2026Updated last week
- CIS Benchmark testing of Windows SIEM configuration☆45May 25, 2023Updated 2 years ago
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆27,689Updated this week
- An open source threat modeling tool from OWASP☆1,372Updated this week
- A standard API specification for exchanging supply chain artifacts and intelligence☆106Mar 25, 2026Updated last week
- OSV-SCALIBR: A library for Software Composition Analysis☆582Mar 27, 2026Updated last week