betterscan
Scanner
A toolchain that scans source code and infrastructure IaC for security risks and provides a unified report.
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan
817 stars
16 watching
90 forks
Language: Python
last commit: 8 days ago
Linked from 2 awesome lists
code-qualitycode-quality-analyzercompliancedevopsdevops-toolsdevsecopsgdprowaspsastsecurity-auditsecurity-automationsecurity-orchestrationsecurity-scannersecurity-toolssonarqubestatic-analysisstatic-analyzersstatic-code-analysisvulnerabilityvulnerability-scanner
Related projects:
Repository | Description | Stars |
---|---|---|
bearer/bearer | A tool for discovering and prioritizing security risks in software code | 2,040 |
security-code-scan/security-code-scan | Detects vulnerabilities in C# and VB.NET code | 944 |
tenable/terrascan | Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. | 4,770 |
coinbase/salus | A tool for coordinating security scanning of software projects | 21 |
globocom/huskyci | Automated security testing and analysis tool | 576 |
zupit/horusec | Identifies security flaws in software projects through static code analysis | 1,149 |
codingo/reconnoitre | Automates reconnaissance and service enumeration of network hosts to gather information and write recommendations for further testing. | 2,110 |
hightechsec/git-scanner | Tools for identifying and scanning public Git repositories for security vulnerabilities | 339 |
touk/sputnik | An automated tool for static code analysis and review of Java projects. | 201 |
insidersec/insider | A tool that analyzes source code to identify security vulnerabilities and provides reporting on compliance with the OWASP Top 10 | 516 |
boostsecurityio/poutine | Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. | 229 |
mozilla/cipherscan | Tool to test and analyze SSL/TLS ciphersuites on a target system | 1,966 |
sonarsource/sonar-php | Analyzes PHP code for quality and security issues | 390 |
flatt-security/shisho | A tool that analyzes code for security vulnerabilities and provides feedback to developers | 371 |
psecio/parse | A tool to scan PHP code for potential security issues at compile-time | 366 |