tcosolutions / betterscan
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan
☆857Updated last month
Alternatives and similar repositories for betterscan:
Users that are interested in betterscan are comparing it to the libraries listed below
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆836Updated last year
- ☆407Updated 2 years ago
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,125Updated last year
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆892Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆561Updated 2 weeks ago
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,087Updated this week
- Attack surface detector that identifies endpoints by static analysis☆693Updated last week
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆799Updated 2 weeks ago
- secureCodeBox (SCB) - continuous secure delivery out of the box☆879Updated this week
- GitHub Actions Pipeline Enumeration and Attack Tool☆623Updated last week
- Tool for building Kubernetes attack paths☆846Updated 2 weeks ago
- Open Source Package Analysis☆828Updated this week
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆516Updated last month
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆627Updated 2 weeks ago
- ☆290Updated 8 months ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆471Updated last year
- Automating situational awareness for cloud penetration tests.☆2,077Updated last month
- A comprehensive list of software composition analysis tools.☆141Updated 10 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆923Updated this week
- Global Security Database☆314Updated 11 months ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆384Updated 6 months ago
- Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.☆1,027Updated last year
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆689Updated last year
- Check your WAF before an attacker does☆1,363Updated 2 months ago
- Organize your API security assessment by using MindAPI. It's free and open for community collaboration.☆839Updated 2 months ago
- Navigate the CVE jungle with ease.☆1,960Updated this week
- OXO is a security scanning orchestrator for the modern age.☆549Updated last week
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆667Updated this week
- Peirates - Kubernetes Penetration Testing tool☆1,305Updated last month
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆977Updated 4 months ago