1597 Open source projects that are alternatives of or similar to Grype

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

Vulnerability Static Analysis for Containers

A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification

hacker, ready for more of our story ! 🚀

[Project ended] rkt is a pod-native container engine for Linux. It is composable, secure, and built on standards.

A fast and lightweight fully featured OCI runtime and C library for running containers

Common digest package used across the container ecosystem

WEB SERVICE SECURITY ASSESSMENT TOOL

OCI Runtime Specification

runj is an experimental, proof-of-concept OCI-compatible runtime for FreeBSD jails.

Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBoM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more.

Install a Kubernetes cluster the CoreOS Tectonic Way: HA, self-hosted, RBAC, etcd Operator, and more

The toolkit to pack, ship, store, and deliver container content

firecracker-containerd enables containerd to manage containers as Firecracker microVMs

CLI tool for spawning and running containers according to the OCI specification

Application Kernel for Containers

Build OCI images from Dockerfiles.

A simple container management platform

OCI Image Format

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

umoci modifies Open Container images

WPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

Vulnerability (CVE) scanner for Nix/NixOS.

Securify v2.0

OCI (Open Containers Initiative) compatible runtime using Virtual Machines

An Efficient Enterprise-class Container Engine

Hypervisor-based Runtime for OCI

OCI (Open Containers Initiative) compatible runtime for Intel® Architecture

An open and reliable container runtime

Kata Containers version 2.x repository. Kata Containers is an open source project and community working to build a standard implementation of lightweight Virtual Machines (VMs) that feel and perform like containers, but provide the workload isolation and security advantages of VMs. https://katacontainers.io/

OCI Artifacts

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

🏗 Build container images for your Java applications.

Ignite a Firecracker microVM

OCI Image Tooling

common selinux implementation

A mruby-based Builder for Docker Images

Kata Containers version 1.x runtime (for version 2.x see https://github.com/kata-containers/kata-containers).

OCI Distribution Specification

Go Web Application Penetration Test

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

A collection of electronic hacker magazines carefully curated over the years from multiple sources

A static analysis security vulnerability scanner for Ruby on Rails applications

Performing security tests inside your CI

Making CoreOS' Clair easily work in CI/CD pipelines

Joint Advanced Defect assEsment for android applications

汽车/安卓/固件/代码安全测试工具集

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Dockerfile best-practices for writing production-worthy Docker images.

concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit

fileboy，文件变更监听通知工具，使用 Go 编写。Fileboy, File Change Monitoring Notification Tool, written with Go.

Open source and extensible Platform as a Service (PaaS).

Simple DNS Rebinding Service

CodeCompass is a software comprehension tool for large scale software written in C/C++ and Java