Alternatives and similar repositories for betterscan:

Users that are interested in betterscan are comparing it to the libraries listed below

• owasp-dep-scan / dep-scan
  OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …
  ☆1,048Updated last month
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆822Updated last year
• Bearer / bearer
  Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
  ☆2,144Updated this week
• Ostorlab / oxo
  OXO is a security scanning orchestrator for the modern age.
  ☆534Updated last week
• OWASP / threat-dragon
  An open source threat modeling tool from OWASP
  ☆980Updated this week
• CycodeLabs / raven
  CI/CD Security Analyzer
  ☆641Updated 2 months ago
• ossf / package-analysis
  Open Source Package Analysis
  ☆805Updated this week
• semgrep / semgrep-rules
  Semgrep rules registry
  ☆830Updated this week
• TupleType / awesome-cicd-attacks
  Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
  ☆502Updated 2 months ago
• psiinon / open-source-web-scanners
  A list of open source web security scanners
  ☆986Updated 3 months ago
• erev0s / VAmPI
  Vulnerable REST API with OWASP top 10 vulnerabilities for security testing
  ☆946Updated last month
• secureCodeBox / secureCodeBox
  secureCodeBox (SCB) - continuous secure delivery out of the box
  ☆793Updated this week
• praetorian-inc / gato
  GitHub Actions Pipeline Enumeration and Attack Tool
  ☆579Updated 5 months ago
• projectdiscovery / cloudlist
  Cloudlist is a tool for listing Assets from multiple Cloud Providers.
  ☆888Updated this week
• devops-kung-fu / bomber
  Scans Software Bill of Materials (SBOMs) for security vulnerabilities
  ☆536Updated last week
• rverton / webanalyze
  Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.
  ☆996Updated last year
• BishopFox / cloudfox
  Automating situational awareness for cloud penetration tests.
  ☆1,998Updated 2 weeks ago
• Legit-Labs / legitify
  Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
  ☆789Updated 2 weeks ago
• ghostsecurity / reaper
  💀 Don't fear the Reaper 👻
  ☆433Updated 3 weeks ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆383Updated 2 months ago
• OWASP / ASST
  OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.
  ☆163Updated 10 months ago
• owasp-noir / noir
  Attack surface detector that identifies endpoints by static analysis
  ☆638Updated this week
• cider-security-research / top-10-cicd-security-risks
  ☆404Updated last year
• mazen160 / secrets-patterns-db
  Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
  ☆1,074Updated 11 months ago
• michelin / ChopChop
  ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
  ☆681Updated last year
• Aqua-Nautilus / CVE-Half-Day-Watcher
  ☆294Updated 5 months ago
• factionsecurity / faction
  Pen Test Report Generation and Assessment Collaboration
  ☆456Updated this week
• KissPeter / APIFuzzer
  Fuzz test your application using your OpenAPI or Swagger API definition without coding
  ☆435Updated 3 weeks ago
• Checkmarx / capital
  A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…
  ☆280Updated 9 months ago
• kac89 / vulnrepo
  VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, i…
  ☆453Updated 2 weeks ago