trivy
Security scanner
Automatically scans software projects for vulnerabilities and misconfigurations to ensure security and compliance.
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
24k stars
168 watching
2k forks
Language: Go
last commit: about 12 hours ago
Linked from 9 awesome lists
containersdevsecopsdockergogolanghacktoberfestiacinfrastructure-as-codekubernetesmisconfigurationsecuritysecurity-toolsvulnerabilityvulnerability-detectionvulnerability-scanners
veggiemonk/awesome-docker
sbilly/awesome-security
fabacab/awesome-cybersecurity-blueteam
rootsongjc/awesome-cloud-native
jakobthedev/awesome-devsecops
appcypher/awesome-wasm-runtimes
funkmyster/awesome-cloud-security
jatrost/awesome-kubernetes-threat-detectionRelated projects:
| Repository | Description | Stars |
|---|---|---|
| aquasecurity/trivy-action | Automates vulnerability scanning of Docker images using Trivy | 835 |
| aquasecurity/kube-hunter | Detects security weaknesses in Kubernetes clusters to increase awareness and visibility of potential vulnerabilities. | 4,765 |
| aquasecurity/kube-bench | Automated security auditing tool for Kubernetes clusters | 7,078 |
| aquasecurity/tfsec | A tool for identifying potential misconfigurations in Terraform code during the software development process | 6,722 |
 anchore/grype | A tool for detecting vulnerabilities in container images and filesystems | 8,861 |
 edersonbrilhante/vilicus | An open-source tool that orchestrates security scans of container images and centralizes the results into a database for analysis and metrics. | 85 |
 mziyabo/argocd-trivy-extension | Enables visualization of Trivy vulnerability reports in Argo CD UI | 71 |
 linuxserver/docker-swag | A Docker container that sets up an Nginx webserver and reverse proxy with PHP support, including automated SSL certificate generation and renewal, as well as intrusion prevention. | 2,915 |
 gitleaks/gitleaks | Detects sensitive information in source code repositories | 17,964 |
 deepfence/secretscanner | A tool that scans container images and file systems for sensitive data such as passwords and keys. | 3,134 |
 quay/clair | Analyzes vulnerabilities in container images to improve security transparency | 10,359 |
 teamssix/container-escape-check | Detects potential vulnerabilities in Docker containers by checking for common escape methods | 556 |
 cve-search/git-vuln-finder | Automates CVE vulnerability detection from Git commit messages | 397 |
 gauravnarwani97/trishul | Automated vulnerability detection tool for web applications | 234 |
 owasp/nettacker | Automated tool for identifying vulnerabilities and gathering information about network services and systems. | 3,618 |