Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression. Learn more →
ThreatMapper Alternatives
Similar projects and alternatives to ThreatMapper
-
trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
-
terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
-
InfluxDB
Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.
-
kubesphere
The container platform tailored for Kubernetes multi-cloud, datacenter, and edge management ⎈ 🖥 ☁️
-
devspace
DevSpace - The Fastest Developer Tool for Kubernetes ⚡ Automate your deployment workflow with DevSpace and develop software directly inside Kubernetes.
-
Apache Log4j 2
Apache Log4j 2 is a versatile, feature-rich, efficient logging API and backend for Java.
-
kubescape
Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
-
SecretScanner
:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:
-
SonarQube
Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.
-
-
snyk
Snyk CLI scans and monitors your projects for security vulnerabilities. [Moved to: https://github.com/snyk/cli]
-
-
-
openebs
Leading Open Source Container Attached Storage, built using Cloud Native Architecture, simplifies running Stateful Applications on Kubernetes.
-
MeiliSearch
A lightning-fast search engine that fits effortlessly into your apps, websites, and workflow.
-
-
lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
-
prowler
Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
-
Sysdig
Linux system exploration and troubleshooting tool with first class support for containers
-
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
ThreatMapper reviews and mentions
-
Vulnerability scanning tools for homelab?
If you like Wiz.io but don't have a million dollars or so lying around, I'm finding the community edition of Deepfence (https://deepfence.io/) pretty good.
-
CSPM opensource suggestions
Magpie https://github.com/openraven/magpie ThreatMapper https://github.com/deepfence/ThreatMapper Cloudquery https://github.com/cloudquery/cloudquery
-
Official /r/rust "Who's Hiring" thread for job-seekers and job-offerers [Rust 1.64]
Company: https://deepfence.io
-
Free vulnerability scanners
ThreatMapper is an option for your team member, particularly if you're looking to scan Kubernetes or Fargate environments as the installation is very easy. It's a little more complex for hosts (you need to install a docker runtime on each to run the sensor locally), but should be worth any additional trouble. The GUI gives you a map of workloads, traffic flows, vulnerabilities found on each workload and host, and which are highest risk.
-
Sysdig VS ThreatMapper - a user suggested alternative
2 projects | 11 Apr 2022
-
ThreatMapper: Runtime Vulnerability Management and Attack Path Enumeration for Cloud Native
ThreatMapper is an open source (Apache2) tool for scanning running applications and infrastructure to find vulnerable dependencies and exposed secrets.
-
ThreatMapper 1.3.0: Now with Secret Scanning, Runtime SBOMs, and More
We are pleased to announce the general availability of ThreatMapper 1.3.0! Highlights from this latest release include:
- Log4j - Runtime attack path visualisation
-
Log4j: Between a Rock and a Hard Place
How we visualized and fixed runtime exposure due to vulnerable Elasticsearch, using ThreatMapper
https://deepfence.io/cve-2021-44228-log4j2-exploitability-an...
-
A note from our sponsor - InfluxDB
www.influxdata.com | 1 Apr 2023
Stats
deepfence/ThreatMapper is an open source project licensed under Apache License 2.0 which is an OSI approved license.