future-architect/vuls

Features

• OS Vulnerability Scanning - Scans diverse operating systems, cloud environments, and containers to identify known security flaws.
• Vulnerability Scanners - Provides agentless vulnerability scanning for operating systems, containers, and network devices.
• Dependency Analysis - Analyzes programming language lockfiles and package manifests to detect insecure third-party libraries.
• Dependency Auditing - Detects security flaws in programming libraries and website plugins by analyzing lockfiles and version data.
• Network Hardware Scanning - Identifies security vulnerabilities in network hardware and devices via platform-based enumeration.
• Agentless Data Collection - Provides a mechanism to collect system data via SSH or local execution to avoid permanent agent installations.
• Automated Security Patching - Checks operating systems for missing security updates and identifies servers that require reboots after kernel patches.
• Container Security Scanners - Scans running containers and cloud environments to detect outdated software and known security vulnerabilities.
• Network Security Auditing - Identifies known vulnerabilities in network hardware and devices through platform enumeration and version checking.
• Dependency Vulnerability Scanning - Analyzes installed project packages and lockfiles for known security vulnerabilities using external databases.
• Vulnerability Databases - Cross-references detected software versions and package metadata against known vulnerability databases and security advisories.
• Intelligence Cross-Referencing - Matches discovered software versions against multiple vulnerability databases, security advisories, and exploit catalogs.
• Threat Intelligence Aggregation - Combines data from vulnerability databases, security advisories, and exploit catalogs to produce high-quality results.
• Vulnerability Intelligence Feeds - Aggregates and cross-references software versions against multiple vulnerability databases, security advisories, and exploit catalogs.
• Vulnerability Scanning - Identifies security flaws in operating systems, containers, and network devices without requiring permanent agent installations.
• Compiled Software Vulnerability Detection - Detects security flaws in compiled software and network devices using lockfiles and third-party integrations.
• Vulnerability Scan Servers - Implements an HTTP-based scan server that processes software manifests and returns vulnerability results in JSON format.
• Dependency Vulnerability Scanners - Analyzes programming language libraries and website plugins to find vulnerabilities via lockfiles.
• Remote Security Scanning - Connects to target servers via SSH from a central machine to perform security audits without installing agents.
• Security Auditing Tools - Allows security audits to be run directly on a target machine to eliminate the need for central SSH connectivity.
• Platform Enumeration - Identifies vulnerabilities in network devices and containers by detecting the specific hardware or runtime environment.
• Kernel Reboot Auditing - Checks if target servers require a reboot after kernel updates to ensure security patches are active.
• Reboot Auditing - Checks system kernel versions and package update logs to identify servers requiring restarts for security patches.
• Vulnerability Scanners - Agentless vulnerability scanning for Linux and FreeBSD systems.
• Security Tools - Agentless vulnerability scanner for Linux

Star history