Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more (by aquasecurity)

Trivy Alternatives

Similar projects and alternatives to trivy

  • Grafana

    379 trivy VS Grafana

    The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.

  • kubescape

    Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
  • grype

    A vulnerability scanner for container images and filesystems

  • checkov

    54 trivy VS checkov

    Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

  • falco

    Cloud Native Runtime Security

  • syft

    CLI tool and library for generating a Software Bill of Materials from container images and filesystems

  • Kyverno

    Kubernetes Native Policy Management

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
  • clair

    Vulnerability Static Analysis for Containers

  • tfsec

    Security scanner for your Terraform code

  • hadolint

    24 trivy VS hadolint

    Dockerfile linter, validate inline bash, written in Haskell

  • kube-bench

    Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

  • cargo-auditable

    Make production Rust binaries auditable

  • terrascan

    Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

  • dependency-track

    Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

  • apko

    Build OCI images from APK packages directly without Dockerfile

  • kics

    13 trivy VS kics

    Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

  • tracee

    Linux Runtime Security and Forensics using eBPF

  • snyk

    62 trivy VS snyk

    Discontinued Snyk CLI scans and monitors your projects for security vulnerabilities. [Moved to:]

  • validkube

    9 trivy VS validkube

    ValidKube combines the best open-source tools to help ensure Kubernetes YAML best practices, hygiene & security.

  • kubeval

    Validate your Kubernetes configuration files, supports multiple Kubernetes versions

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better trivy alternative or higher similarity.

trivy reviews and mentions

Posts with mentions or reviews of trivy. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2024-04-16.


Basic trivy repo stats
6 days ago

aquasecurity/trivy is an open source project licensed under Apache License 2.0 which is an OSI approved license.

The primary programming language of trivy is Go.

SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives