Dockerscan alternatives

Looking for a better tool, or simply want to learn about alternatives? There is typically more than one option.

Alternatives (by tag)

100

Alternative: Anchore

Anchore is a security tool to perform container analysis, inspect and control them.

Project details

Anchore is written in Python.

Strengths

  • + Commercial support available
  • + The source code of this software is available

Anchore project page

85

Alternative: bane

The bane tool is an AppArmor profile generator for Docker containers. It helps with creating the appropriate profile for confinement on system level.

With bane it becomes much easier to create an AppArmor profile. It works by running a Docker container while bane monitors it. Any required permissions will then be stored in the profile.

Project details

bane is written in Golang.

Strengths

  • + The source code of this software is available

Typical usage

  • security monitoring
  • system hardening

bane project page

76

Alternative: Docker Bench for Security

Docker Bench for Security is a small security scanner to perform several tests that are part of the Docker CIS benchmark.

Project details

Docker Bench for Security is written in shell script.

Strengths

  • + Screen output is colored
  • + More than 25 contributors
  • + More than 2000 GitHub stars
  • + The source code of this software is available

Typical usage

  • application security
  • security assessment

Docker Bench for Security project page

64

Alternative: evilredis

The evilredis tool is an offensive security program for pentesting Redis databases. It can scan the target and perform different actions on it.

Project details

evilredis is written in Node.js.

Strengths

  • + The source code of this software is available

Typical usage

  • security assessment
  • vulnerability scanning

evilredis project page

78

Alternative: Metasploit Framework

Metasploit is a framework that consists of tools to perform security assignments. It focuses on the offensive side of security and leverages exploit modules.

Project details

Metasploit Framework is written in Ruby.

Strengths

  • + More than 400 contributors
  • + More than 9000 stars
  • + Many maintainers
  • + The source code of this software is available
  • + Supported by a large company
  • + Well-known tool

Typical usage

  • penetration test
  • security assessment
  • vulnerability scanning

Metasploit Framework project page

88

Alternative: OWTF (Offensive Web Testing Framework)

The OWTF project (Offensive Web Testing Framework) unites tools for penetrating testing. Most parts are written in Python.

OWTF is short for Offensive Web Testing Framework and it is one of the many OWASP projects to improve security.

Project details

OWTF is written in Python.

Strengths

  • + More than 25 contributors
  • + More than 500 GitHub stars
  • + The source code of this software is available

Typical usage

  • penetration test
  • security assessment

OWTF project page

64

Alternative: Pyersinia

Pyersinia is a tool like Yersinia and can perform network attacks such as spoofing ARP, DHCP DoS , STP DoS, and more. It is written in Python and uses Scapy.

Project details

Pyersinia is written in Python.

Strengths

  • + The source code of this software is available

Typical usage

  • network analysis
  • penetration test
  • security assessment

Pyersinia project page

64

Alternative: RouterSploit

RouterSploit is a framework to test exploitation of embedded devices. It can be used as part of penetrating testing assignments or security assessments.

Project details

RouterSploit is written in Python.

Strengths

  • + More than 25 contributors
  • + More than 4000 GitHub stars
  • + The source code of this software is available

Typical usage

  • penetration test
  • self-assessment
  • software testing
  • vulnerability scanning

RouterSploit project page