Awesome Open Source

Programming Languages

Search results for penetration testing vulnerability scanner

penetration-testing x

vulnerability-scanner x

11 search results found

Sqlmap ⭐ 29,628

Automatic SQL injection and database takeover tool

Scanners Box ⭐ 8,001

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

Faraday ⭐ 4,422

Open Source Vulnerability Management Platform

Commix ⭐ 4,328

Automated All-in-One OS Command Injection Exploitation Tool.

Vulscan ⭐ 2,983

Advanced vulnerability scanning with Nmap NSE

Xunfeng ⭐ 2,946

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Raccoon ⭐ 2,928

A high performance offensive security tool for reconnaissance and vulnerability scanning

Nettacker ⭐ 2,915

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Awesome Termux Hacking ⭐ 2,550

⚡️An awesome list of the best Termux hacking tools

Afrog ⭐ 2,451

A Security Tool for Bug Bounty, Pentest and Red Teaming.

EMBA - The firmware security analyzer

Poc T ⭐ 1,925

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

Fuxploider ⭐ 1,702

File upload vulnerability scanner and exploitation tool.

Rapidscan ⭐ 1,489

🆕 The Multi-Tool Web Vulnerability Scanner.

Xattacker ⭐ 1,486

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

V3n0m Scanner ⭐ 1,342

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Intrigue Core ⭐ 1,205

Discover Your Attack Surface!

Perun ⭐ 1,037

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫

Ssh Snake ⭐ 874

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

Pentesttools ⭐ 816

Awesome Pentest Tools Collection

Web Cache Vulnerability Scanner ⭐ 756

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

Autopwn Suite ⭐ 636

AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.

Log4j Detector ⭐ 622

Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!

Jackhammer ⭐ 599

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Redteam_toolkit ⭐ 512

Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

Vanquish ⭐ 422

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Securitymanageframwork ⭐ 421

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Hackerenv ⭐ 375

Artemis ⭐ 357

A modular vulnerability scanner with automatic report generation capabilities.

Sqli Hunter ⭐ 356

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

AI-Powered Ethical Hacking Assistant

A python tool to check subdomain takeover vulnerability

Open-source vulnerability scanner

Missing Cve Nuclei Templates ⭐ 249

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

EMBArk - The firmware security scanning environment

The "bane" Python library stands out as a robust toolkit catering to a wide spectrum of cybersecurity and networking tasks. Its versatile range of functionalities covers various aspects, including bruteforce attacks, cryptographic methods, DDoS attacks, information gathering, botnet creation and management, and CMS vulnerability scanning and more..

Monitoring exploits & references for CVEs

Web Security Scanner

Inthewilddb ⭐ 183

Hourly updated database of exploit and exploitation reports

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

vMass Bot 🪝 Vulnerability Scanner & Auto Exploiter Tool Written in Perl.

Scanner And Patcher ⭐ 145

A Web Vulnerability Scanner and Patcher

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

ScanPro - NMap Scanning Scripts ~ Network Mapper

Secator - the pentester's swiss knife

| FazScan is a Perl program to do some vulnerability scanning and pentesting |

uscan is an automated vulnerability scanner that streamlines the process of website hacking, making it faster and more efficient than ever before.

Flexible Penetrate Testing Auxiliary Suite

Httprecon Nse ⭐ 67

Advanced web server fingerprinting for Nmap

Cvescannerv2 ⭐ 66

Nmap script that scans for probable vulnerabilities based on services discovered in open ports.

Quick Tricks ⭐ 62

Bitrix vulnerability scanner

Metasploit-like pentest framework derived from TIDoS (https://github.com/0xInfection/TIDoS-Framework)

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

Automated attack surface mapper and vulnerability scanner (Work In Progress 🚧)

Sifter - All purpose penetration testing op-center

Ronin Vulns ⭐ 49

Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.

CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.

Xattacker ⭐ 39

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Faraday_plugins ⭐ 36

Security tools report parsers for Faradaysec.com

Delosnmap ⭐ 34

delosNmap | Nmap Script

Attacksurfacemanagement ⭐ 33

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Faraday_agent_dispatcher ⭐ 30

Faraday Agent Dispatcher launches any security tools and send results to Faradaysec Platform.

Automatically exported from code.google.com/p/yaptest

ITWSV- Integrated Tool for Web Security Vulnerability

Pentest Tools Framework ⭐ 26

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Crawleet ⭐ 25

Web Recon & Exploitation Tool.

w4af: web advanced application attack and audit framework, the open source web vulnerability scanner.

Cve 2022 47966 Scan ⭐ 21

Python scanner for CVE-2022-47966. Supports ~10 of the 24 affected products.

Labsecurity ⭐ 21

Labsecurity is a tool that bundles ethical hacking python scripts into a single tool with cli interface.

Awacs Scanner ⭐ 17

Another vulnerability scanner

Installer ⭐ 17

Installation script for Codename SCNR.

Protocol Analyzer ⭐ 16

Fuzz testing framework for network protocols.

Attacktoolkit ⭐ 13

Open-source Exploiting Framework

Cervantes plataform docker repository

Pointer is a Fast Simple Lightweight Tool for Endpoint Discovery.

Thexframework ⭐ 10

Network/WebApplication Information Gathering, Enumeration and Vulnerability Scanning (Under Development)

🚀 blazing-fast pentesting suite written in Go

Random IPv6 - circumvents restrictive IP address-based filter and blocking rules

Httprecon Win32 ⭐ 9

Advanced web server fingerprinting

Vulnmapai ⭐ 8

VulnMapAI combines the power of nmap’s detailed network scanning and the advanced natural language processing capabilities of GPT-4 to generate comprehensive and intelligible vulnerability reports. It aims to facilitate the identification and understanding of security vulnerabilities.

Pentest4vaadin ⭐ 8

Spider and analyze vaadin applications with OWASP ZAP - the app mediates between the two.

Carbontoolkit ⭐ 7

Automated tool for information gathering and vulnerability assessment

WRecon is an open source no intussive web scanner. It is designed to discover all URL in a website recursively, without using bruteforce or unauthorized access. It comes with a camouflage engine and nice features for pentesting.

Automatic SQL injection and database takeover tool.

Overwhelm ⭐ 5

Overwhelm's Vanquish is a Kali Linux based Enumeration Orchestrator built in Python running inside a docker container. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases. The results of each phase are fed into the next phase to identify vulnerabilities that could be leveraged for a remote shell

Faraday_burp ⭐ 5

Burp Extension for collaboration in Faraday

Related Searches

Security Penetration Testing (767)

Scanner Penetration Testing (373)

Python Penetration Testing (359)

Penetration Testing Information Security (358)

Exploitation Penetration Testing (357)

1-11 of 11 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.