Open Hub
Black Duck Open Hub

Tags : Browse Projects

Select a tag to browse associated projects and drill deeper into the tag cloud.

SonarQube

Compare

  Analyzed 4 months ago

SonarQube is an open source software quality management tool, dedicated to continuously analyze and measure source code quality. Using SonarQube throughout the whole development project life cycle drastically improves visibility for every stakeholder. This gained visibility allows to manage risks ... [More] , reduce maintenance costs and improve agility by implementing a real quality first approach. Teams can now seamlessly embrace quality with fun. [Less]

27.8M lines of code

83 current contributors

4 months since last commit

129 users on Open Hub

Activity Not Available
4.54545
   
1 Review
I Use This
Mostly written in Go
Licenses: lgpl3
Tags agile code_analysis dashboard findbugs maven2 metrics qa qualimetry quality sonar vulnerability-scanner vulnerabilityscanner

Greenbone Vulnerability Management (GVM) Framework

Compare

  Analyzed about 11 hours ago

The Greenbone Vulnerability Management (GVM) is a framework of several services: - The Greenbone Vulnerability Manager (gvmd) is the central service that consolidates plain vulnerability scanning into a full vulnerability management solution. - The Greenbone Security Assistant (GSA) is the web ... [More] interface of GVM. - The main scanner OpenVAS Scanner is a full-featured scan engine that executes a continuously updated and extended feed of Network Vulnerability Tests (NVTs). - Complementary to the web interface, GVM-Tools allows batch processing / scripting via the Greenbone Management Protocol (GMP). [Less]

651K lines of code

32 current contributors

2 days since last commit

15 users on Open Hub

Very High Activity
4.28571
   
1 Review
I Use This
Mostly written in C
Licenses: AGPL3_or_..., GNU_Gener..., gpl
Tags assetmanagement audit greenbone gvm network networksecurity opensource openvas penetrationtest penetrationtesting pentest pentesting 8 more...

Nikto

Compare

  Analyzed about 14 hours ago

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently ... [More] updated and can be automatically updated (if desired). [Less]

4.48K lines of code

16 current contributors

about 2 months since last commit

5 users on Open Hub

Low Activity
2.5
   
0 Reviews
I Use This
Mostly written in Perl
Licenses: gpl
Tags hacking injection lfi penetrationtest penetrationtesting pentest pentester pentesting rfi scanner security server 8 more...

Lynis

Compare

Claimed by CISOfy Analyzed about 3 hours ago

Lynis is an auditing tool for systems running Linux, BSD, or other Unix derivatives. It performs a security scan and determines the hardening state of the machine. Any detected security issues will be provided in the form of a suggestion or warning. Beside security related information it will also ... [More] scan for general system information, installed packages, and possible configuration errors. This software assists with automated auditing, compliance audits (PCI DSS, HIPAA, etc), system hardening, software patch management, vulnerability detection, and malware scanning. It can be run without prior installation. Lynis is typically used by system administrators and security professionals. [Less]

20.4K lines of code

28 current contributors

about 1 month since last commit

3 users on Open Hub

Moderate Activity
5.0
 
0 Reviews
I Use This
Mostly written in shell script
Licenses: gpl3
Tags audit auditing auditor bsd compliance compliancesoftware harden hardening linux lockdown security securitychecker 8 more...

WPScan

Compare

  Analyzed about 22 hours ago

WPScan is a black box WordPress vulnerability scanner.

54.9K lines of code

8 current contributors

5 months since last commit

2 users on Open Hub

Low Activity
5.0
 
0 Reviews
I Use This
Mostly written in JavaScript
Licenses: gpl
Tags auditor blog securitychecker securityframework securityscanner vulnerability vulnerabilityassessment vulnerabilityscanner wordpress

CoreOS Clair

Compare

  Analyzed 1 day ago

Clair is a container vulnerability analysis service. It provides a list of vulnerabilities that threaten a container, and can notify users when new vulnerabilities that affect existing containers become known.

14.7K lines of code

26 current contributors

2 days since last commit

1 users on Open Hub

Moderate Activity
0.0
 
0 Reviews
I Use This
Mostly written in Go
Licenses: apache_2
Tags container docker go golang security securityscanner vulnerabilityscanner

bandit

Compare

Claimed by Python Code Quality Authority Analyzed about 15 hours ago

Python AST-based static analyzer from OpenStack Security Group

0 lines of code

1 current contributors

about 5 years since last commit

1 users on Open Hub

Activity Not Available
0.0
 
0 Reviews
I Use This
Mostly written in language not available
Licenses: apache_2
Tags audit code_analysis OpenStack python security securityscanner staticcodeanalysis vulnerabilityscanner

HubbleStack

Compare

  Analyzed about 24 hours ago

Hubble is a modular, open-source security compliance monitoring framework. The project provides on-demand profile-based auditing, real-time security event notifications, automated remediation, alerting and reporting.

69.8K lines of code

16 current contributors

10 months since last commit

1 users on Open Hub

Very Low Activity
5.0
 
0 Reviews
I Use This
Mostly written in Python
Licenses: apache_2
Tags apache2 audit auditing cis compliance compliancesoftware cve foss hubble hubblestack linux opensource 8 more...

NuGetDefense

Compare

  Analyzed 1 day ago

An MSBuildTask that checks for known vulnerabilities. Inspired by OWASP SafeNuGet.

2.64K lines of code

0 current contributors

3 days since last commit

1 users on Open Hub

Moderate Activity
5.0
 
0 Reviews
I Use This
Mostly written in C#
Licenses: lgpl
Tags msbuildtask nuget security vulnerabilityscanner

log4jscanwin

Compare

  Analyzed about 18 hours ago

Log4j Vulnerability Scanner for Windows

212K lines of code

0 current contributors

about 1 year since last commit

1 users on Open Hub

Very Low Activity
0.0
 
0 Reviews
I Use This
Mostly written in C
Licenses: No declared licenses
Tags auditing cve scanner security securitychecker securityscanner vulnerabilityscanner