Zierax

Zierax / Grafana-Final-Scanner

Public

Grafana scanner with all public CVEs that I collected in one script to make grafana testing easier

68
9
69% credibility
Found Feb 18, 2026 at 16 stars 4x -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

A scanning tool that tests Grafana dashboard websites for known security vulnerabilities and misconfigurations, producing detailed reports.

How It Works

1
🔍 Discover the Safety Checker

You learn about a helpful tool that inspects Grafana dashboards for hidden security risks.

2
📥 Grab the Tool

You download the simple checker program straight to your computer from its online home.

3
⚙️ Get It Ready

You prepare the checker so it's all set to examine websites on your machine.

4
🚀 Start Checking a Site

You enter the web address of your Grafana dashboard and launch the safety scan with one go.

5
See It Work

The tool quietly visits the site, tests for weak spots, and gathers info without fuss.

6
📊 Review the Results

Colorful reports pop up showing any dangers found, like open doors or old problems.

Know You're Protected

You get a clear picture of your site's safety and steps to fix issues for peace of mind.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 16 to 68 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is Grafana-Final-Scanner?

Grafana-Final-Scanner is a Python CLI tool that acts as a grafana cve scanner, collecting public CVEs into one script to make vulnerability testing on Grafana deployments easier and faster. Point it at a Grafana URL via `python scanner.py -u https://your-grafana.com` for version fingerprinting across multiple endpoints, then targeted checks for 10 CVEs like directory traversal and SQL injection. It supports batch scans from files, JSON reports, verbose output, and self-signed SSL bypasses.

Why is it gaining traction?

It bundles grafana vulnerability scanner logic with smart version detection to skip irrelevant checks, cutting false positives in scans. The polished terminal output with phased progress, severity colors, and summaries beats generic tools, while JSON exports fit grafana github actions or CI pipelines for grafana github dashboard monitoring. Devs grab it for quick audits on grafana github integration setups or public releases without chasing scattered CVE scripts.

Who should use this?

Security engineers auditing Grafana in production clusters, DevOps teams embedding it in grafana github actions dashboards for PR checks, or pentesters probing exposed grafana github datasource endpoints. Ideal for folks managing grafana github helm chart deploys or grafana github oauth logins who need fast CVE confirmation before patching.

Verdict

Grab it for lightweight Grafana scans if you're okay with its early maturity—15 stars and a 0.7% credibility score signal single-dev effort with solid docs but no tests or broad validation. Solid starter for targeted use, but pair with full scanners for high-stakes prod.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.