ThreatMapper VS semgrep-rules

Compare ThreatMapper vs semgrep-rules and see what are their differences.

ThreatMapper

Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more. (by deepfence)
cloud-native vulnerability-management threat-analysis Devsecops secops registry-scanning security-tools cwpp Observability cloudsecurity vulnerability-scanners vulnerability-detection scanning-tool cnapp Compliance Containers cspm DevOps Kubernetes HacktoberFest
Source Code
deepfence.io
Docs
Suggest alternative
Edit details

semgrep-rules

Semgrep rules registry (by semgrep)
Static Analysis grep-like program-analysis Security security-scanner semgrep semgrep-rules semgrep-registry
Source Code
semgrep.dev
Suggest alternative
Edit details
SurveyJS
Our great sponsors
  • SurveyJS - Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • WorkOS - The modern identity platform for B2B SaaS
Our great sponsors
ThreatMapper semgrep-rules
32 8
4,631 706
1.2% 2.8%
9.9 9.5
3 days ago 2 days ago
TypeScript Solidity
Apache License 2.0 GNU General Public License v3.0 or later
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

ThreatMapper

Posts with mentions or reviews of ThreatMapper. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-03-05.

semgrep-rules

Posts with mentions or reviews of semgrep-rules. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-06-21.

What are some alternatives?

When comparing ThreatMapper and semgrep-rules you can also consider the following projects:

trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

find-sec-bugs - The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

CVE-2021-44228-Log4Shell-Hashes - Hashes for vulnerable LOG4J versions

kubesphere - The container platform tailored for Kubernetes multi-cloud, datacenter, and edge management ⎈ 🖥 ☁️

ZAP - The ZAP core project

kubescape - Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

pyre-check - Performant type-checking for python.

devspace - DevSpace - The Fastest Developer Tool for Kubernetes ⚡ Automate your deployment workflow with DevSpace and develop software directly inside Kubernetes.

Log4JShell-Bytecode-Detector - Local Bytecode Scanner for the Log4JShell Vulnerability (CVE-2021-44228)

openscap - NIST Certified SCAP 1.2 toolkit

apache-log4j-rce-poc

ThreatMapper vs trivy semgrep-rules vs find-sec-bugs ThreatMapper vs terrascan semgrep-rules vs CVE-2021-44228-Log4Shell-Hashes ThreatMapper vs kubesphere semgrep-rules vs ZAP ThreatMapper vs kubescape semgrep-rules vs pyre-check ThreatMapper vs devspace semgrep-rules vs Log4JShell-Bytecode-Detector ThreatMapper vs openscap semgrep-rules vs apache-log4j-rce-poc