betterscan

Scanner

A toolchain that scans source code and infrastructure IaC for security risks and provides a unified report.

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

GitHub

817 stars
16 watching
90 forks
Language: Python
last commit: 8 days ago
Linked from 2 awesome lists

code-qualitycode-quality-analyzercompliancedevopsdevops-toolsdevsecopsgdprowaspsastsecurity-auditsecurity-automationsecurity-orchestrationsecurity-scannersecurity-toolssonarqubestatic-analysisstatic-analyzersstatic-code-analysisvulnerabilityvulnerability-scanner

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
bearer/bearer A tool for discovering and prioritizing security risks in software code 2,040
security-code-scan/security-code-scan Detects vulnerabilities in C# and VB.NET code 944
tenable/terrascan Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. 4,770
coinbase/salus A tool for coordinating security scanning of software projects 21
globocom/huskyci Automated security testing and analysis tool 576
zupit/horusec Identifies security flaws in software projects through static code analysis 1,149
codingo/reconnoitre Automates reconnaissance and service enumeration of network hosts to gather information and write recommendations for further testing. 2,110
hightechsec/git-scanner Tools for identifying and scanning public Git repositories for security vulnerabilities 339
touk/sputnik An automated tool for static code analysis and review of Java projects. 201
insidersec/insider A tool that analyzes source code to identify security vulnerabilities and provides reporting on compliance with the OWASP Top 10 516
boostsecurityio/poutine Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. 229
mozilla/cipherscan Tool to test and analyze SSL/TLS ciphersuites on a target system 1,966
sonarsource/sonar-php Analyzes PHP code for quality and security issues 390
flatt-security/shisho A tool that analyzes code for security vulnerabilities and provides feedback to developers 371
psecio/parse A tool to scan PHP code for potential security issues at compile-time 366