Alternatives and similar repositories for betterscan

Users that are interested in betterscan are comparing it to the libraries listed below

• owasp-dep-scan / dep-scan
  OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …
  ☆1,123Updated last week
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆844Updated last year
• owasp-noir / noir
  Attack surface detector that identifies endpoints by static analysis
  ☆712Updated last week
• semgrep / semgrep-rules
  Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.
  ☆929Updated this week
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆724Updated 10 months ago
• CycodeLabs / raven
  CI/CD Security Analyzer
  ☆659Updated 4 months ago
• projectdiscovery / cloudlist
  Cloudlist is a tool for listing Assets from multiple Cloud Providers.
  ☆939Updated last week
• erev0s / VAmPI
  Vulnerable REST API with OWASP top 10 vulnerabilities for security testing
  ☆997Updated 6 months ago
• ossf / package-analysis
  Open Source Package Analysis
  ☆834Updated 2 months ago
• devops-kung-fu / bomber
  Scans Software Bill of Materials (SBOMs) for security vulnerabilities
  ☆570Updated 2 months ago
• OWASP / Docker-Security
  Getting a handle on container security
  ☆656Updated last year
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆474Updated 2 years ago
• dolevf / graphql-cop
  Security Auditor Utility for GraphQL APIs
  ☆477Updated 4 months ago
• rverton / webanalyze
  Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.
  ☆1,054Updated last year
• OWASP / threat-dragon
  An open source threat modeling tool from OWASP
  ☆1,127Updated this week
• praetorian-inc / gato
  GitHub Actions Pipeline Enumeration and Attack Tool
  ☆668Updated last week
• cider-security-research / top-10-cicd-security-risks
  ☆416Updated 2 years ago
• Hackmanit / Web-Cache-Vulnerability-Scanner
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆979Updated last week
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆675Updated last week
• DataDog / KubeHound
  Tool for building Kubernetes attack paths
  ☆884Updated last month
• google / osv.dev
  Open source vulnerability DB and triage service.
  ☆1,902Updated this week
• CycloneDX / cdxgen
  Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…
  ☆717Updated this week
• wireghoul / graudit
  grep rough audit - source code auditing tool
  ☆1,621Updated last month
• elttam / semgrep-rules
  ☆196Updated 7 months ago
• secureCodeBox / secureCodeBox
  secureCodeBox (SCB) - continuous secure delivery out of the box
  ☆899Updated last week
• ghostsecurity / reaper
  💀 Don't fear the Reaper 👻
  ☆543Updated last week
• aquasecurity / chain-bench
  An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…
  ☆749Updated 6 months ago
• trailofbits / semgrep-rules
  Semgrep queries developed by Trail of Bits.
  ☆410Updated 2 weeks ago
• dsopas / MindAPI
  Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
  ☆842Updated 4 months ago
• attacksurge / awesome-attack-surface-monitoring
  Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.
  ☆415Updated 8 months ago