Top 10 Go Vulnerability Projects

• trivy

  82 21,222 9.7 Go

  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

  

Project mention: A Deep Dive Into Terraform Static Code Analysis Tools: Features and Comparisons | dev.to | 2024-04-16

Trivy Owner/Maintainer: Aqua Security Age: First released on GitHub on May 7th, 2019 License: Apache License 2.0 backward-compatible with tfsec

• grype

  55 7,623 9.5 Go

  A vulnerability scanner for container images and filesystems

  

Project mention: Suas imagens de container não estão seguras! | dev.to | 2024-03-20

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• dalfox

  1 3,260 8.4 Go

  🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

• dockle

  2 2,643 5.8 Go

  Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

  

• bearer

  18 1,720 9.6 Go

  Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

  

Project mention: Show HN: Bearer Code Security Scanner Add Support for Java, PHP, Go, and Python | news.ycombinator.com | 2023-10-26

• Terrapin-Scanner

  4 882 8.4 Go

  This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".

  

Project mention: Tell HN: Ubiquiti APs likely vulnerable to Terrapin | news.ycombinator.com | 2024-03-14

For more details visit our website available at https://terrapin-attack.com

• dnstake

  3 799 0.0 Go

  DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover

  

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• copacetic

  6 770 9.3 Go

  🧵 CLI tool for directly patching container images using reports from vulnerability scanners

  

Project mention: copacetic: 🧵 CLI tool for directly patching container images using reports from vulnerability scanners | /r/blueteamsec | 2023-11-25

• fortiscan

  1 161 2.5 Go

  A high performance FortiGate SSL-VPN vulnerability scanning and exploitation tool.

• vimp

  1 54 8.5 Go

  Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures. (by mchmarny)

Go Vulnerability related posts

• Suas imagens de container não estão seguras!
  4 projects | dev.to | 20 Mar 2024
• Terrapin SSH Attack: An Overview
  1 project | dev.to | 12 Jan 2024
• Distroless images using melange and apko
  8 projects | dev.to | 22 Dec 2023
• Scanning and remediating vulnerabilities with Grype
  1 project | dev.to | 19 Aug 2023
• The Elasticsearch Rant
  1 project | news.ycombinator.com | 11 Jun 2023
• Best vulnerability scanner for DevOps
  2 projects | /r/devsecops | 19 May 2023
• Security docker app
  3 projects | /r/selfhosted | 20 Apr 2023
• A note from our sponsor - InfluxDB
  www.influxdata.com | 19 Apr 2024

  Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

Do not miss the trending Go projects with our weekly report!