Top 12 Open-Source Alternatives to OpenVAS

The top open-source alternatives to OpenVAS are Zed Attack Proxy, Rapid7, and w3af. One of the criteria for ordering this list is the number of mentions that products have on reliable external sources. You can suggest additional sources through the form here.

Zed Attack Proxy Landing Page
1

Zed Attack Proxy

The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding...
Pricing:
- Open Source
#Web Application Security #Security #Security & Privacy
Rapid7 Landing Page
2

Rapid7

Find security issues, verify vulnerability mitigations & manage security assessments with Metasploit. Get the world's best penetration testing software now. DownloadPen testing software to act like an attacker.
Pricing:
- Open Source
#Security #Security & Privacy #Web Application Security 1 social mentions
w3af Landing Page
3

w3af

w3af is a Web Application Attack and Audit Framework
Pricing:
- Open Source
#Security #Web Application Security #Monitoring Tools 1 social mentions
Dependency-Check Landing Page
4

DC

Dependency-Check

Dependency-Check is a utility that identifies project dependencies and checks if there are any...
Pricing:
- Open Source
#Security #Software Development #Code Analysis 16 social mentions
SonarQube Landing Page
5

SonarQube

SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
Pricing:
- Open Source
- Freemium
- Free Trial
- $150.0 / Annually
#Code Analysis #Code Review #Code Coverage 1 social mentions
Snyk Landing Page
6

Snyk

Snyk helps you use open source and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and much more.
Pricing:
- Open Source
#Security #Security Monitoring #Security CI 85 social mentions
Zabbix Landing Page
7

Zabbix

Track, record, alert and visualize performance and availability of IT resources
Pricing:
- Open Source
- Free
#Monitoring Tools #Performance Monitoring #DevOps Tools 5 social mentions
Ossec Landing Page
8

Ossec

OSSEC is an Open Source Host-based Intrusion Detection System.
Pricing:
- Open Source
#Security & Privacy #Cyber Security #Monitoring Tools 1 social mentions
HackerOne Landing Page
9

HackerOne

HackerOne provides a platform designed to streamline vulnerability coordination and bug bounty program by enlisting hackers.
Pricing:
- Open Source
#Cyber Security #Ethical Hacking #Bug Bounty As A Service 17 social mentions
Wazuh Landing Page
10

Wazuh

Open Source Host and Endpoint Security
Pricing:
- Open Source
#Security & Privacy #Security Information And Event Management (SIEM) #Cyber Security 49 social mentions
Angry IP Scanner Landing Page
11

Angry IP Scanner

Open-source and cross-platform network scanner designed to be fast and simple to use
Pricing:
- Open Source
#Monitoring Tools #Network Scanning #Network Security 32 social mentions
Arachni Landing Page
12

Arachni

Arachni is a Free/Public-Source Web Application Security Scanner aimed towards helping users evaluate the security of web applications.
Pricing:
- Open Source
#Security #Web Application Security #Monitoring Tools