betterscan
Scanner
A toolchain that scans source code and infrastructure IaC for security risks and provides a unified report.
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan
817 stars
16 watching
90 forks
Language: Python
last commit: 6 days ago
Linked from 2 awesome lists
code-qualitycode-quality-analyzercompliancedevopsdevops-toolsdevsecopsgdprowaspsastsecurity-auditsecurity-automationsecurity-orchestrationsecurity-scannersecurity-toolssonarqubestatic-analysisstatic-analyzersstatic-code-analysisvulnerabilityvulnerability-scanner
sbilly/awesome-security
caramelomartins/awesome-lintersRelated projects:
| Repository | Description | Stars |
|---|---|---|
 bearer/bearer | A tool for discovering and prioritizing security risks in software code | 2,040 |
 security-code-scan/security-code-scan | Detects vulnerabilities in C# and VB.NET code | 944 |
 tenable/terrascan | Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. | 4,766 |
 coinbase/salus | A tool for coordinating security scanning of software projects | 21 |
 globocom/huskyci | Automated security testing and analysis tool | 576 |
 zupit/horusec | Identifies security flaws in software projects through static code analysis | 1,149 |
 codingo/reconnoitre | Automates reconnaissance and service enumeration of network hosts to gather information and write recommendations for further testing. | 2,110 |
 hightechsec/git-scanner | Tools for identifying and scanning public Git repositories for security vulnerabilities | 339 |
 touk/sputnik | An automated tool for static code analysis and review of Java projects. | 201 |
 insidersec/insider | A tool that analyzes source code to identify security vulnerabilities and provides reporting on compliance with the OWASP Top 10 | 516 |
 boostsecurityio/poutine | Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. | 229 |
 mozilla/cipherscan | Tool to test and analyze SSL/TLS ciphersuites on a target system | 1,966 |
 sonarsource/sonar-php | Analyzes PHP code for quality and security issues | 390 |
 flatt-security/shisho | A tool that analyzes code for security vulnerabilities and provides feedback to developers | 371 |
 psecio/parse | A tool to scan PHP code for potential security issues at compile-time | 366 |