InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now. Learn more →
Top 9 Go vulnerability-detection Projects
-
trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Project mention: Stop shipping insecure Dockerfiles: real devs don’t run as root | dev.to | 2025-05-03 -
InfluxDB
InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
-
nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
-
vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
-
kubescape
Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
Project mention: Kubescape : Comprehensive Kubernetes Security from Development to Runtime | dev.to | 2024-09-16 -
scan4all
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
-
For more details, check out the Trivy Operator documentation and Helm chart repository.
-
Open-Source-Security-Guide
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
-
eBPF-Guide
eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.
NOTE:
The open source projects on this list are ordered by number of github stars.
The number of mentions indicates repo mentiontions in the last 12 Months or
since we started tracking (Dec 2020).
Go vulnerability-detection discussion
Go vulnerability-detection related posts
-
🛡️ Effective Vulnerability Monitoring in Kubernetes
-
Friends - needs help choosing solution for SBOM vulnerability
-
Show HN: Oneleet – Penetration Testing for SoC 2 and beyond
-
Show HN: Oneleet – Penetration Testing for SoC 2 and beyond
-
Degree vs Certifications
-
software inventory of my ECS tasks
-
How I found 130+ Sub-domain Takeover vulnerabilities using Nuclei
-
A note from our sponsor - InfluxDB
www.influxdata.com | 19 Jun 2025
Index
What are some of the best open-source vulnerability-detection projects in Go? This list will help you:
| # | Project | Stars |
|---|---|---|
| 1 | trivy | 27,146 |
| 2 | nuclei | 23,632 |
| 3 | vuls | 11,626 |
| 4 | kubescape | 10,824 |
| 5 | scan4all | 5,704 |
| 6 | trivy-operator | 1,531 |
| 7 | Open-Source-Security-Guide | 955 |
| 8 | shortscan | 947 |
| 9 | eBPF-Guide | 575 |
Sponsored
InfluxDB – Built for High-Performance Time Series Workloads
InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
www.influxdata.com