PyPI Stats

Vulnerability Scanners Python Packages

Python packages with the GitHub topic vulnerability-scanners. Sorted by relevance, with stars and monthly downloads.
pyupio
safety

Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.

6M 2K 179
nyudenkov
pysentry-rs

🐍 Scan your Python dependencies for known security vulnerabilities with Rust-powered scanner

103K 234 8
greenbone
python-gvm

Greenbone Vulnerability Management Python Library

55K 125 68
chenjj
cors

🎯 Fast CORS misconfiguration vulnerabilities scanner

32K 1K 185
adeptex
whispers

Identify hardcoded secrets in static structured text (version 2)

22K 98 11
sonatype-nexus-community
jake

Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.

21K 132 22
ochronasec
ochrona

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

19K 51 8
owasp-dep-scan
owasp-depscan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

18K 1K 129
owasp-dep-scan
ds-analysis-lib

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

14K 1K 129
owasp-dep-scan
ds-xbom-lib

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

14K 1K 129
owasp-dep-scan
ds-reporting-lib

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

14K 1K 129
anchore
yardstick

Compare vulnerability scanners results (to make them better!)

13K 27 9
ohaswin
pyscan-rs

python dependency vulnerability scanner, written in Rust.

11K 242 8
greenbone
ospd

OSPd is a framework for vulnerability scanners which share the same communication protocol: OSP (Open Scanner Protocol)

8K 33 36
AlaBouali
bane

The "bane" Python library stands out as a robust toolkit catering to a wide spectrum of cybersecurity and networking tasks. Its versatile range of functionalities covers various aspects, including bruteforce attacks, cryptographic methods, DDoS attacks, information gathering, botnet creation and management, and CMS vulnerability scanning and more..

7K 359 70
freelabz
secator

secator - the pentester's swiss knife

7K 1K 128
appthreat
appthreat-depscan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

6K 1K 129
berylliumsec
nebula-ai

AI-powered penetration testing assistant for automating recon, note-taking, and vulnerability analysis.

5K 950 140
Peternasarah
permi

AI-powered vulnerability scanner for Nigerian developers and global SMBs

5K 5 1
aboutcode-org
aboutcode-hashid

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

4K 662 303
taoq-ai
ziran

自然 ZIRAN is an open-source security testing framework for AI agents. It discovers dangerous tool chain compositions via knowledge graph analysis, detects execution-level side effects (not just text output), and runs multi-phase trust exploitation campaigns that model real attacker behaviour.

3K 6 1
rohaquinlop
immunipy

A Python SCA tool that acts as a watchdog, keeping an eye out for security vulnerabilities and reporting them promptly.

3K 10 2
nocomplexity
codeaudit

Codeaudit - Modern Python source code security analyzer based on distrust.

3K 37 1
nexB
vulnerablecode

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

3K 662 303