docker-bench-security VS anchore-engine

Compare docker-bench-security vs anchore-engine and see what are their differences.

docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production. (by docker)

anchore-engine

A service that analyzes docker images and scans for vulnerabilities (by anchore)
InfluxDB - Purpose built for real-time analytics at any scale.
InfluxDB Platform is powered by columnar analytics, optimized for cost-efficient storage, and built with open data standards.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured
docker-bench-security anchore-engine
13 3
9,049 1,529
0.3% -
6.5 4.0
4 months ago over 1 year ago
Shell Python
Apache License 2.0 Apache License 2.0
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

docker-bench-security

Posts with mentions or reviews of docker-bench-security. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-07-21.

anchore-engine

Posts with mentions or reviews of anchore-engine. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2022-10-20.

What are some alternatives?

When comparing docker-bench-security and anchore-engine you can also consider the following projects:

hadolint - Dockerfile linter, validate inline bash, written in Haskell

grype - A vulnerability scanner for container images and filesystems

kube-bench - Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

dagda - a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

checkov - Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

jellyfin-session-kicker - Session kicker after X amount of watch time for Jellyfin

gosec - Go security checker

quay - Build, Store, and Distribute your Applications and Containers

tfsec - Tfsec is now part of Trivy

aura - Python source code auditing and static analysis on a large scale

SonarQube - Continuous Inspection

ochrona-cli - A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

InfluxDB - Purpose built for real-time analytics at any scale.
InfluxDB Platform is powered by columnar analytics, optimized for cost-efficient storage, and built with open data standards.
www.influxdata.com
featured
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

Did you konow that Shell is
the 9th most popular programming language
based on number of metions?