betterscan

Scanner

A toolchain that scans source code and infrastructure IaC for security risks and provides a unified report.

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

GitHub
831 stars
15 watching
93 forks
Language: Python
last commit: about 1 month ago
Linked from 2 awesome lists

code-qualitycode-quality-analyzercompliancedevopsdevops-toolsdevsecopsgdprowaspsastsecurity-auditsecurity-automationsecurity-orchestrationsecurity-scannersecurity-toolssonarqubestatic-analysisstatic-analyzersstatic-code-analysisvulnerabilityvulnerability-scanner

Screenshot of tcosolutions/betterscan website

betterscan.io

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
bearer/bearer A tool for discovering and prioritizing security risks in software code 2,112
security-code-scan/security-code-scan Detects vulnerabilities in C# and VB.NET code 942
tenable/terrascan Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. 4,779
coinbase/salus A tool for coordinating security scanning of software projects 25
globocom/huskyci Automated security testing and analysis tool 579
zupit/horusec Identifies security flaws in software projects through static code analysis 1,154
codingo/reconnoitre Automates reconnaissance and service enumeration of network hosts to gather information and write recommendations for further testing. 2,124
hightechsec/git-scanner Tools for identifying and scanning public Git repositories for security vulnerabilities 341
touk/sputnik An automated tool for static code analysis and review of Java projects. 201
insidersec/insider A tool that analyzes source code to identify security vulnerabilities and provides reporting on compliance with the OWASP Top 10 519
boostsecurityio/poutine Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. 239
mozilla/cipherscan Tool to test and analyze SSL/TLS ciphersuites on a target system 1,966
sonarsource/sonar-php Analyzes PHP code for quality and security issues 394
flatt-security/shisho A tool that analyzes code for security vulnerabilities and provides feedback to developers 369
psecio/parse A tool to scan PHP code for potential security issues at compile-time 367