Grype
Apache-2.0⚡ Vulnerability Scanning · Go
Grype is a vulnerability scanner for container images and filesystems that identifies known vulnerabilities by matching installed packages against CVE databases. It provides detailed reports and integrates with SBOM to enhance software supply chain security. Grype's capabilities in scanning and its focus on container security make it an essential tool for DevOps teams and security professionals. Its support for multiple image formats and package managers broadens its applicability in modern development workflows.
Tags
Details
- Category
- ⚡ Vulnerability Scanning
- Language
- Go
- Repository
- anchore/grype
- License
- Apache-2.0
- Platforms
- 🐧linux🍎macos🪟windows
Links
Used in 2 Workflows
Community Reviews
Alternatives & Comparisons
Falco
C++Cloud-native runtime security. Detects threats in containers, Kubernetes, and Linux hosts using system call monitoring and custom rules.
Compare Grype vs FalcoDockle
GoContainer image linter. Checks Docker images for security best practices, CIS benchmarks, and Dockerfile misconfigurations.
Compare Grype vs DockleSyft
GoSoftware Bill of Materials generator. Creates SBOMs from container images and filesystems in SPDX and CycloneDX formats.
Compare Grype vs SyftMore in Vulnerability Scanning
Nuclei
GoFast vulnerability scanner driven by YAML templates. Thousands of community-contributed detection templates.
sqlmap
PythonAutomatic SQL injection and database takeover tool. Detects and exploits SQL injection flaws.
WPScan
RubyWordPress security scanner. Enumerates plugins, themes, users, and checks for known vulnerabilities.
OpenVAS
CFull-featured vulnerability scanner. 50,000+ NVTs, credentialed scanning, compliance checks.
XSStrike
PythonAdvanced XSS detection suite. Fuzzing engine, context analysis, and WAF detection/bypass capabilities.
Commix
PythonAutomated OS command injection exploitation tool. Tests web apps for command injection vulnerabilities.