bane alternatives

Looking for a better tool, or simply want to learn about alternatives? There is typically more than one option.

Alternatives (by tag)

64

Alternative: Karn

Karn is a tool to create AppArmor and seccomp profiles. This can be useful to restrict what applications can do for increased security.

Project details

Karn is written in Golang.

Strengths

  • + The source code of this software is available

Typical usage

  • application security
  • system hardening

Karn project page

100

Alternative: Anchore

Anchore is a toolkit to perform in-depth container analysis, inspection, and controlling them. Among security scanning, it can do a wide range of functions.

Project details

Anchore is written in Python.

Strengths

  • + Commercial support available
  • + The source code of this software is available

Typical usage

  • system hardening

Anchore project page

64

Alternative: DFWFW (Docker Firewall Framework)

DFWFW, short of Docker Firewall Framework, offers easy administration of the iptables rules of Docker containers. It updates using event streams.

Project details

DFWFW is written in Perl.

Strengths

  • + The source code of this software is available

Weaknesses

  • - Full name of author is unknown

Typical usage

  • firewall management

DFWFW project page

68

Alternative: Docker Bench for Security

Docker Bench for Security is a small security scanner to perform several tests that are part of the Docker CIS benchmark.

Project details

Docker Bench for Security is written in shell script.

Strengths

  • + Screen output is colored
  • + More than 25 contributors
  • + More than 2000 GitHub stars
  • + The source code of this software is available

Typical usage

  • application security
  • security assessment

Docker Bench for Security project page

64

Alternative: Dockerscan

Dockerscan is a Docker toolkit for security analysis which includes attacking tools. It is more focused on side of the offensive than defensive.

Project details

Dockerscan is written in Python.

Strengths

  • + More than 500 GitHub stars
  • + The source code of this software is available

Typical usage

  • information gathering
  • security assessment
  • vulnerability scanning

Dockerscan project page

93

Alternative: subuser

Subuser is a tool that allows commands to be executed with restrictions. It works on Linux and can increase security by lowering access levels.

Project details

subuser is written in Python.

Strengths

  • + More than 10 contributors
  • + More than 500 GitHub stars
  • + The source code of this software is available

Typical usage

  • software testing

subuser project page