Top 11 Open-Source Alternatives to OpenSCAP

Product categories

Attack Surface Management Clean Code Code Analysis Code Review Cyber Security Monitoring Tools Open Source Security Security & Privacy Security Monitoring Vulnerability Scanner Web Application Security

Summary

The top open-source alternatives to OpenSCAP are Dependency-Check, Lynis, and SonarQube. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

Dependency-Check Landing Page
1

DC

Dependency-Check

Dependency-Check is a utility that identifies project dependencies and checks if there are any...
Pricing:
- Open Source
#Security #Software Development #Code Analysis 16 social mentions
Lynis Landing Page
2

Lynis

Security auditing tool for systems running Linux, macOS, BSD, and other UNIX-based systems.
Pricing:
- Open Source
#Security #Monitoring Tools #Cyber Security 26 social mentions
SonarQube Landing Page
3

SonarQube

SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
Pricing:
- Open Source
- Freemium
- Free Trial
- $150.0 / Annually
#Code Analysis #Code Review #Code Coverage 1 social mentions
Snyk Landing Page
4

Snyk

Snyk helps you use open source and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more.
Pricing:
- Open Source
#Security #Security Monitoring #Security CI 85 social mentions
Rapid7 Landing Page
5

Rapid7

Find security issues, verify vulnerability mitigations & manage security assessments with Metasploit. Get the world's best penetration testing software now. DownloadPen testing software to act like an attacker.
Pricing:
- Open Source
#Security #Security & Privacy #Web Application Security 1 social mentions
Zed Attack Proxy Landing Page
6

Zed Attack Proxy

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding...
Pricing:
- Open Source
#Web Application Security #Security #Security & Privacy
Trivy Landing Page
7

Trivy

A Simple and Comprehensive Vulnerability Scanner for Containers and other Artifacts, Suitable for CI
Pricing:
- Open Source
#Security & Privacy #Monitoring Tools #Cyber Security
Metasploit Landing Page
8

Metasploit

Find security issues, verify vulnerability mitigations & manage security assessments with Metasploit. Get the world's best penetration testing software now.
Pricing:
- Open Source
#Security #Security Monitoring #Web Application Security
SpotBugs Landing Page
9

SpotBugs

Static Application Security Testing (SAST)
Pricing:
- Open Source
#Code Analysis #Code Review #Web Application Security 3 social mentions
Sn1per Security Landing Page
10

Sn1per Security

Discover hidden assets and vulnerabilities in your environment with our all-in-one Attack Surface Management platform
Pricing:
- Open Source
- Freemium
- $984.0 / Annually (Sn1per Professional v10.0)
#Security #Vulnerability Scanner #Penetration Testing
Arkime Landing Page
11

Arkime

An open source, large scale, full packet capturing, indexing, and database system. Stop using slow tools to dissect and search your packets, let Arkime do the grunt work for you!
Pricing:
- Open Source
#Security & Privacy #Cyber Security #Security 2 social mentions