Awesome Open Source
Search results for security scanner
642 search results found
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Fast and customizable vulnerability scanner based on simple YAML based DSL.
The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
Exploitation Framework for Embedded Devices
🤖 The Modern Port Scanner 🤖
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
Web path scanner
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Tsunami Security Scanner
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Attack Surface Management Platform
A vulnerability scanner for container images and filesystems
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Security scanner for your Terraform code
Cyber Security ALL-IN-ONE Platform
Poc In Github
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
Awesome Web Hacking
A list of web application security
Next generation web scanner
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
A Workflow Engine for Offensive Security
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
w3af: web application attack and audit framework, the open source web vulnerability scanner.
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.
Cameradar hacks its way into RTSP videosurveillance cameras
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
Web Application Security Scanner Framework
Monitor linux processes without root permissions
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.
Fast and powerful SSL/TLS scanning library.
Advanced vulnerability scanning with Nmap NSE
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
Black Hat Rust
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
Awesome Nodejs Security
Awesome Node.js Security resources
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
nodejsscan is a static security code scanner for Node.js applications.
Snoop — инструмент разведки на основе открытых данных (OSINT world)
Tool to scan for secret files on HTTP servers
Is Website Vulnerable
Hacker tools on Go (Golang)
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
100 Redteam Projects
Projects for security students
🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
A php.ini scanner for best security practices
Find and fix 360+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.
🖖 Fast, modern, easy-to-use network scanner
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunase
An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全，具备专业的软件成分分析（SCA）、漏洞检测、专业漏洞库。
Advanced dork Search & Mass Exploit Scanner
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.
WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
A default credential scanner.
Security risk analysis for Kubernetes resources
K8Ladon大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用 C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆 Strike联动
Docker security analysis & hacking tools
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
Actions for running CodeQL analysis
Cve Bin Tool
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
Tsunami Security Scanner Plugins
This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.
Security Code Scan
Vulnerability Patterns Detector for C# and VB.NET
RouterOS Security Research Tooling and Proof of Concepts
A collection of special paths linked to common internal paths, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
Real-time, container-based file scanning at enterprise scale
kube-scan: Octarine k8s cluster risk assessment tool
Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.
Security scanner coordinator
Security Data Analysis And Visualization
Web Cache Vulnerability Scanner
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
Automatic SQL injection with Charles and sqlmap api
AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.
Scan your code for security misconfiguration, search for passwords and secrets. 🔍
A Docker container for Openvas
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
A free utility that finds malware, adware and other security threats
An intelligence gathering tool for hacking Bluetooth
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Ronin is a Free and Open Source Ruby Toolkit for Security Research and Development. Ronin also allows for the rapid development and distribution of code, exploits, payloads, etc, via 3rd party git repositories.
Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.
Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework
Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
The best way to scan for weak ssh passwords on your network
Auto Scanning to SSL Vulnerability
A Blazing fast Security Auditing tool for Kubernetes
Security Vulnerabilities (12,345)
Laravel Security (11,580)
Php Security (10,611)
Python Scanner (3,733)
Python Security (3,710)
Html Security (2,245)
Java Scanner (1,470)
Golang Security (1,385)
Shell Security (1,159)
1-100 of 642 search results
Follow Us On Twitter
Copyright 2018-2023 Awesome Open Source. All rights reserved.