Cvechecker

cvechecker is an open-source command-line tool for scanning software applications and system packages to identify vulnerabilities and exposure to known exploits. It checks against databases like the NVD and OVAL.

Security & Privacy Vulnerability Scanner

opensource commandline vulnerability-scanning cve-scanning

Cvechecker alternatives ➤

CVE Checker: Identify Vulnerabilities in Software Applications

Open-source command-line tool scanning software applications and system packages for known exploits and vulnerabilities, checking against NVD and OVAL databases.

What is Cvechecker?

cvechecker is an open-source command-line utility that allows users to scan software applications, system packages, containers, and virtual machine images to identify vulnerabilities and exposure to publicly known exploits. It works by checking the software and its dependencies against vulnerability databases like the NVD (National Vulnerability Database) and OVAL (Open Vulnerability and Assessment Language).

Some key features of cvechecker include:

Scans system packages installed locally (e.g. RPM/Deb packages) or container images/VM images
Checks software versions against CVE (Common Vulnerabilities and Exposures) details in the NVD
Uses OVAL checks to identify vulnerable or outdated software
Provides detailed reports showing vulnerable packages/CVEs and exposure levels
Help prioritize patching and upgrades to mitigate risks
Open-source tool written in Go, works across Linux, Windows, and macOS

Overall, cvechecker serves as a handy tool for developers, sysadmins, and security analysts to perform routine checks for known software vulnerabilities either on individual systems or as part of a vulnerability management pipeline. Being command-line based, it can be easily integrated into scripts and automation workflows.

Cvechecker Features

Features

Scans software for CVEs
Checks against NVD and OVAL databases
Command-line interface
Open source code
Cross-platform

Pricing

Open Source

Pros

Free to use

Simple interface

Uses reputable vulnerability databases

Open source for transparency and community contribution

Cons

Command-line only, no GUI

May miss some vulnerabilities not in NVD/OVAL databases

Requires technical knowledge to run scans and interpret results

Official Links

Official Website
https://github.com/sjvermeu/cvechecker/wiki

The Best Cvechecker Alternatives

Top Security & Privacy and Vulnerability Scanner and other similar apps like Cvechecker

Here are some alternatives to Cvechecker:

Nessus

OpenVAS

OpenSCAP

snort

Dependency-Check

vFeed

Suggest an alternative ❐

Nessus

Nessus is a comprehensive vulnerability scanning software developed by Tenable. It is used to scan networks, operating systems, web applications, databases, and other systems for vulnerabilities that could be exploited by attackers.Some key features of Nessus include:Ability to perform high-speed discovery, mapping, and assessment of vulnerabilities across networks, endpoints, web...

Compare Nessus and Cvechecker

OpenVAS

OpenVAS (Open Vulnerability Assessment System) is a free and open source vulnerability scanner and vulnerability management solution. It can perform network vulnerability tests, system configuration audits and vulnerability detection using the Network Vulnerability Tests (NVT) rules. OpenVAS provides complete tests coverage for IT vulnerabilities with over 50,000 NVTs for vulnerabilities...

Compare OpenVAS and Cvechecker

OpenSCAP

OpenSCAP is an open-source auditing tool that enables automated security scanning and compliance testing of systems against security benchmarks and policies. It helps organizations maintain continuous monitoring of their infrastructure for vulnerabilities, misconfigurations, and policy compliance issues.Some key features and capabilities of OpenSCAP include:Performs automated scanning for security vulnerabilities based...

Compare OpenSCAP and Cvechecker

Snort

Snort is a free and open-source network intrusion detection system (NIDS) and intrusion prevention system (IPS). It was created in 1998 by Martin Roesch and is now developed by Cisco. Snort analyzes network traffic in real-time and performs protocol analysis, content searching, and matching to detect a variety of attacks...

Compare Snort and Cvechecker

Dependency-Check

Dependency-Check is an open source software composition analysis and software vulnerability management tool that analyzes project dependencies to identify any known, publicly disclosed vulnerabilities. It works by scanning the binaries and libraries dependencies of applications to detect security issues, outdated software components, and license problems.Dependency-Check supports a wide range of...

Compare Dependency-Check and Cvechecker

VFeed

vFeed is an open-source vulnerability intelligence database that provides up-to-date information on CVEs and security vulnerabilities. It acts as a comprehensive solution for vulnerability assessment, management and data feeds.Key features and capabilities of vFeed include:Aggregation of multiple vulnerability data sources including NVD, Exploit-DB, Metasploit, CAPEC, CWE, WASC etc.In-depth coverage of...

Compare VFeed and Cvechecker

Network Hotfix Scanner

Network Hotfix Scanner is a Windows-based application designed to help IT administrators and managers scan for and identify missing Windows updates across all computers on their network. The software provides an easy way to perform patch auditing and ensure systems are up-to-date with the latest hotfixes and security patches from...

Compare Network Hotfix Scanner and Cvechecker