ThreatMapper vs lynis

ThreatMapper

Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more. (by deepfence)

Source Code

deepfence.io

Docs

Suggest alternative

Edit details

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional. (by CISOfy)

Source Code

cisofy.com

Suggest alternative

Edit details

SurveyJS - Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App

With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.

surveyjs.io

featured

InfluxDB - Power Real-Time Data Analytics at Scale

Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

www.influxdata.com

featured

ThreatMapper		lynis
	Project
32	Mentions	72
4,632	Stars	12,507
0.4%	Growth	1.0%
9.9	Activity	7.8
1 day ago	Latest Commit	21 days ago
TypeScript	Language	Shell
Apache License 2.0	License	GNU General Public License v3.0 only

The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

ThreatMapper

Posts with mentions or reviews of ThreatMapper. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-03-05.

ThreatMapper: Open-source cloud native security observability platform
1 project | news.ycombinator.com | 10 Sep 2023
OSS Security - Deepfence Threat Mapper
1 project | /r/selfhosters | 17 Jun 2023

Though the Reddit-Mod war has delivered another excellent find. well several actually, but the one I'm posting now is called "Threat Mapper". Its a security scanner, will a fantastic UI, and works across most infrastructure... including VMs, Containers and the main Cloud Providers..
Detecting Threats on 100k Servers, 1000s of Cloud Accounts, 2500 K8s Clusters
1 project | news.ycombinator.com | 5 Jun 2023

https://github.com/deepfence/ThreatMapper
Vulnerability scanning tools for homelab?
2 projects | /r/homelab | 5 Mar 2023

If you like Wiz.io but don't have a million dollars or so lying around, I'm finding the community edition of Deepfence (https://deepfence.io/) pretty good.
CSPM opensource suggestions
9 projects | /r/cloudsecurity | 15 Jan 2023

Magpie https://github.com/openraven/magpie ThreatMapper https://github.com/deepfence/ThreatMapper Cloudquery https://github.com/cloudquery/cloudquery
ThreatMapper – open-source cloud native security observability platform
1 project | news.ycombinator.com | 5 Oct 2022
Official /r/rust "Who's Hiring" thread for job-seekers and job-offerers [Rust 1.64]
18 projects | /r/rust | 22 Sep 2022

Company: https://deepfence.io
Looking for infrastructure monitoring solutions.
1 project | /r/homelab | 9 Aug 2022

And deepfence.imo for vurnalbility scans https://github.com/deepfence/ThreatMapper
Free vulnerability scanners
2 projects | /r/cybersecurity | 29 Apr 2022

ThreatMapper is an option for your team member, particularly if you're looking to scan Kubernetes or Fargate environments as the installation is very easy. It's a little more complex for hosts (you need to install a docker runtime on each to run the sensor locally), but should be worth any additional trouble. The GUI gives you a map of workloads, traffic flows, vulnerabilities found on each workload and host, and which are highest risk.
Do you / how do you scan for vulnerabilities once your code is in production?
1 project | /r/cybersecurity | 18 Apr 2022

Full disclosure - I work for an open source project called ThreatMapper that performs run-time vulnerability scanning and anything you say might be used to make the project better - thank you!

lynis

Posts with mentions or reviews of lynis. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-12-10.

Who does check linux distros of malware - open source
5 projects | /r/linux | 10 Dec 2023

Linux has (free) tools to improve security and detect/remove malware: Lynis,Chkrootkit,Rkhunter,ClamAV,Vuls,LMD,radare2,Yara,ntopng,maltrail,Snort,Suricata...
Learn security best practices
2 projects | /r/cybersecurity | 7 Dec 2023
How do i find and remove the compilers installed in fedora?
1 project | /r/Fedora | 10 Jul 2023
Fight against scans, bots and script-kiddies
2 projects | /r/blueteamsec | 21 Apr 2023

What I would do in your place is run this https://github.com/CISOfy/lynis and follow some of the instructions.
What are your favorite sites that are privacy related that you bookmarked?
11 projects | /r/privacy | 18 Apr 2023

https://github.com/CISOfy/Lynis (Linux hardening)
Server security/hardening baselines for Linux Template
1 project | /r/linuxquestions | 14 Apr 2023
Ultimate privacy when setting up Fedora?
4 projects | /r/PrivacyGuides | 15 Mar 2023
Linux security tests?
1 project | /r/linuxquestions | 10 Mar 2023
Vulnerability scanning tools for homelab?
2 projects | /r/homelab | 5 Mar 2023
Cyber Security for developers: what and where to learn?
2 projects | /r/ExperiencedDevs | 24 Feb 2023

Linux security audit scanner

What are some alternatives?

When comparing ThreatMapper and lynis you can also consider the following projects:

trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Wazuh - Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

OSSEC - OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

kubesphere - The container platform tailored for Kubernetes multi-cloud, datacenter, and edge management ⎈ 🖥 ☁️

PEASS-ng - PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

kubescape - Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

cve-check-tool - Original Automated CVE Checking Tool

devspace - DevSpace - The Fastest Developer Tool for Kubernetes ⚡ Automate your deployment workflow with DevSpace and develop software directly inside Kubernetes.

OSQuery - SQL powered operating system instrumentation, monitoring, and analytics.

openscap - NIST Certified SCAP 1.2 toolkit

debian-cis - PCI-DSS compliant Debian 10/11/12 hardening

ThreatMapper vs trivy lynis vs Wazuh ThreatMapper vs terrascan lynis vs OSSEC ThreatMapper vs kubesphere lynis vs PEASS-ng ThreatMapper vs kubescape lynis vs cve-check-tool ThreatMapper vs devspace lynis vs OSQuery ThreatMapper vs openscap lynis vs debian-cis

Compare ThreatMapper vs lynis and see what are their differences.

ThreatMapper

lynis

ThreatMapper

lynis

What are some alternatives?