Go vulnerability-scanners

Open-source Go projects categorized as vulnerability-scanners
Edit details
Topics: Security security-tools Golang Docker vulnerability-detection
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

Top 15 Go vulnerability-scanner Projects

  • trivy

    Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

    • Project mention: Cloud Security and Resilience: DevSecOps Tools and Practices | dev.to | 2024-05-01

    4. Trivy: https://github.com/aquasecurity/trivy Trivy is a versatile tool that scans for vulnerabilities in your containers, and also checks for vulnerabilities in your application dependencies.

  • vuls

    Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • tfsec

    Security scanner for your Terraform code

    • Project mention: Cloud Security and Resilience: DevSecOps Tools and Practices | dev.to | 2024-05-01

    3. tfsec: https://github.com/aquasecurity/tfsec tfsec uses a suite of security checks to scan your Terraform templates, helping to identify potential security issues before infrastructure is deployed.

  • scan4all

    Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

  • SecretScanner

    :unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

  • trivy-operator

    Kubernetes-native security toolkit

  • go-dork

    The fastest dork scanner written in Go.

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo

  • clair-scanner

    Docker containers vulnerability scan

  • bomber

    Scans Software Bill of Materials (SBOMs) for security vulnerabilities

  • LogMePwn

    A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.

  • lazytrivy

    Vulnerability scanning just got lazier

  • vesta

    A static analysis of vulnerabilities, Docker and Kubernetes cluster configuration detect toolkit based on the real penetration of cloud computing (by kvesta)

  • udpx

    Fast and lightweight, UDPX is a single-packet UDP scanner written in Go that supports the discovery of over 45 services with the ability to add custom ones. It is easy to use and portable, and can be run on Linux, Mac OS, and Windows. Unlike internet-wide scanners like zgrab2 and zmap, UDPX is designed for portability and ease of use.

  • vmclarity

    VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities

    • Project mention: An Overview of Kubernetes Security Projects at KubeCon Europe 2023 | dev.to | 2023-05-22

    VMClarity works similarly, but within the context of VMs used by cloud services to host containers and clusters. Compared to containers, VMs may be as (or even more) vulnerable to threats and they typically need complex tools for analysis. Following a similar pattern to KubeClarity, VMClarity supports aggregating multiple tools into one UI and CLI.

  • log4shelldetect

    Rapidly scan filesystems for Java programs potentially vulnerable to Log4Shell (CVE-2021-44228) or "that Log4j JNDI exploit" by inspecting the class paths inside files

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Go vulnerability-scanners related posts

  • Docker image vulnerabilities scanning trivy vs synk.io

    1 project | /r/docker | 30 Apr 2023

  • Docker image vulnerabilities scanning trivy vs synk.io

    1 project | /r/cybersecurity | 30 Apr 2023

  • How to scan and control the K8 objects are being created against security threats?

    4 projects | /r/kubernetes | 24 Mar 2023

  • Is there a dashboard for the trivy-operator

    3 projects | /r/kubernetes | 7 Feb 2023

  • Improving your CI/CD Pipeline: Helm Charts Security Scanning with Trivy and GitHub Actions

    2 projects | dev.to | 2 Dec 2022

  • Find secrets and passwords in container images and file systems

    1 project | news.ycombinator.com | 27 Oct 2022

  • v0.33.0 · Discussion #3077 · aquasecurity/trivy

    1 project | /r/devopsish | 25 Oct 2022
  • A note from our sponsor - SaaSHub
    www.saashub.com | 20 May 2024
    SaaSHub helps you find the best software and product alternatives Learn more →

Index

What are some of the best open-source vulnerability-scanner projects in Go? This list will help you:

Project Stars
1 trivy 21,593
2 vuls 10,699
3 tfsec 6,583
4 scan4all 5,287
5 SecretScanner 2,966
6 trivy-operator 1,063
7 go-dork 1,001
8 clair-scanner 841
9 bomber 458
10 LogMePwn 379
11 lazytrivy 270
12 vesta 172
13 udpx 165
14 vmclarity 87
15 log4shelldetect 44

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com