Trivy
Trivy Trivy is the all-in-one vuln scanner that hunts CVEs in containers, IaC, and OS packages with a massive DB updated daily, outputting prioritized risks for quick fixes in dev workflows. Run its Go CLI on images or repos for JSON reports, integrating seamlessly into CI for automated gates. Open-source from Aqua Security, it's the versatile vuln vigilante for pentesters scanning diverse assets without bloat.
Explore →Grype
Grype Grype is Anchore's lightweight scanner that matches SBOMs against CVE feeds, flagging vulns in images or files with precise package versioning for targeted remediation. Fire it up via CLI on Docker layers, filtering by severity for clean outputs in pipelines. Open-source and SBOM-smart, it's the package pointer for analysts pinpointing exploitable flaws in dependencies.
Explore →Clair
Clair Clair is the container vuln matcher that indexes image layers against CVE databases, querying for affected components with JSON APIs for registry integrations. Deploy its Go service, push images for scans, and poll results for drift detection in clusters. Open-source from Quay, it's the layer lookout for devs templating vuln checks into container pipelines.
Explore →Vuls
Vuls Vuls is the agentless CVE scanner for Linux distros, querying remote repos and CPEs to list vulns with exploit paths and diff reports for change tracking. Configure via TOML, run scans on servers for GOB diffs, and integrate with Slack for alerts. Open-source from future-architect, it's the distro detective for sysadmins automating CVE hunts across fleets.
Explore →OpenVAS
OpenVAS OpenVAS is the full-featured scanner with 50K+ NVTs for CVE detection across networks, using NASL scripts for authenticated scans and report generation in PDF/HTML. Install from source, sync feeds, and launch tasks from the web UI for prioritized exploits. Open-source fork of Nessus, it's the NVT navigator for pentesters mapping CVEs in enterprise perimeters.
Explore →Vulners Scanner
Vulners Scanner Vulners Scanner is the API-driven CVE hunter for software, OS, and ports, aggregating feeds from NVD/Exploit-DB for scored results with exploit links in JSON outputs. Query via Python CLI on targets, filtering by severity for focused intel. Open-source from vulnersCom, it's the vuln aggregator for researchers compiling CVE intel into actionable briefs.
Explore →Lynis
Lynis Lynis is the security auditing tool with CVE checks for kernel modules and packages, scoring system hardening with YAML profiles for customized tests. Run its bash script on hosts for categorized reports, exporting suggestions for remediation. Open-source from CISOfy, it's the system scorer for admins templating CVE baselines in compliance audits.
Explore →Dependency-Check
Dependency-Check Dependency-Check is OWASP's SCA tool that scans project deps for CVEs via NVD queries, supporting Maven/Gradle for build-time vuln reports with suppression rules. Integrate via CLI or plugins, generating HTML with risk scores for triage. Open-source from jeremylong, it's the dep detective for devs fuzzing supply chains with CVE fingerprints.
Explore →Vulmap
Vulmap Vulmap is the Python scanner for CMS vulns tied to CVEs, querying Exploit-DB and POC scripts for WordPress/Joomla exploits with automated verification. Target sites via CLI, filtering by CVE IDs for matched POCs. Open-source from timstark, it's the CMS CVE catcher for web pentesters templating known exploits into scans.
Explore →cve-search