grype VS opencve

Compare grype vs opencve and see what are their differences.

grype

A vulnerability scanner for container images and filesystems (by anchore)
Containers Security Vulnerability Docker Golang Go Static Analysis container-image Tool OCI cyclonedx Vulnerabilities HacktoberFest openvex vex
Source Code
Suggest alternative
Edit details

opencve

CVE Alerting Platform (by opencve)
Cve Security Vulnerabilities security-tools Nvd Python
Source Code
opencve.io
Suggest alternative
Edit details
WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors
grype opencve
55 21
7,583 1,612
3.8% 2.2%
9.5 4.4
5 days ago 6 days ago
Go Python
Apache License 2.0 GNU General Public License v3.0 or later
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.

grype

Posts with mentions or reviews of grype. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-03-20.

opencve

Posts with mentions or reviews of opencve. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2023-12-07.

What are some alternatives?

When comparing grype and opencve you can also consider the following projects:

trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

anchore-engine - A service that analyzes docker images and scans for vulnerabilities

clair - Vulnerability Static Analysis for Containers

syft - CLI tool and library for generating a Software Bill of Materials from container images and filesystems

falco - Cloud Native Runtime Security

vulnix - Vulnerability (CVE) scanner for Nix/NixOS.

kubescape - Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

kube-bench - Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

hadolint - Dockerfile linter, validate inline bash, written in Haskell

checkov - Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

vulnmine - Vulnmine searches for vulnerable hosts using MS SCCM host / software inventory data with NIST NVD Vulnerability feed data.

lynis - Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

grype vs trivy grype vs anchore-engine grype vs clair grype vs syft grype vs falco opencve vs vulnix grype vs kubescape grype vs kube-bench grype vs hadolint grype vs checkov opencve vs vulnmine grype vs lynis