Dependency-Check是一个用于检测应用程序的依赖项(项目中引入的各种库、框架和软件包)中是否存在已知漏洞的工具。 它可以用于各种编程语言和项目类型,包括Java、JavaScript、Python等
A comprehensive list of software composition analysis tools.
The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for known, published vulnerabilities.
Veracode Software Composition Analysis Scaning
The SCANOSS python package providing a simple, easy to consume library for interacting with SCANOSS APIs/Engine.
Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-...
ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabas...
Software composition analysis tooling built on open source projects
Scans your project to determine what components you use
An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全,具备专业的软件成分分析(SCA)、漏洞检测、专业漏洞库。
open-source stream analysis software
Raw binary firmware analysis software
spectral radiation analysis software
Imaging, analysis, and simulation software for radio interferometry
翻译 - 无线电干涉仪的成像,分析和仿真软件
Endpoint detection & Malware analysis software
[UNMAINTAINED] Software complexity analysis for JavaScript projects
A software oscilloscope and signal analysis toolset
Middleware composition utility
List of software packages for multi-omics analysis
Teaching and Learning Software Analysis via SVF
MOOSE - Platform for software and data analysis.
Object-oriented finite element analysis software.
