Awesome Open Source

Programming Languages

Search results for security scanner

642 search results found

Trivy ⭐ 18,724

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Nuclei ⭐ 14,752

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Bettercap ⭐ 14,547

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Routersploit ⭐ 11,367

Exploitation Framework for Embedded Devices

Rustscan ⭐ 10,721

🤖 The Modern Port Scanner 🤖

Awesome Security ⭐ 10,297

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

Dirsearch ⭐ 10,278

Web path scanner

Vuls ⭐ 10,264

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Tsunami Security Scanner ⭐ 7,930

Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

Wpscan ⭐ 7,794

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via [email protected]

Fuzzdb ⭐ 7,234

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

Nuclei Templates ⭐ 6,994

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Sn1per ⭐ 6,715

Attack Surface Management Platform

Grype ⭐ 6,522

A vulnerability scanner for container images and filesystems

Codeql ⭐ 6,403

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

Tfsec ⭐ 6,258

Security scanner for your Terraform code

Yakit ⭐ 5,545

Cyber Security ALL-IN-ONE Platform

Poc In Github ⭐ 5,377

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Awesome Web Hacking ⭐ 4,950

A list of web application security

Whatweb ⭐ 4,727

Next generation web scanner

Reconftw ⭐ 4,689

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Osmedeus ⭐ 4,676

A Workflow Engine for Offensive Security

Terrascan ⭐ 4,222

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Ladon ⭐ 4,206

Ladon大型内网渗透工具，可PowerShell模块化、可CS插件化、可内存加载，无文件扫描。含端 11.6内置252个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SM

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Applicationinspector ⭐ 4,082

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

Shhgit ⭐ 3,723

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

Cameradar ⭐ 3,451

Cameradar hacks its way into RTSP videosurveillance cameras

Webhackersweapons ⭐ 3,397

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

Retire.js ⭐ 3,371

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

Arachni ⭐ 3,364

Web Application Security Scanner Framework

Monitor linux processes without root permissions

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.

Kscan ⭐ 3,061

Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议

Sslyze ⭐ 3,008

Fast and powerful SSL/TLS scanning library.

Vulscan ⭐ 2,983

Advanced vulnerability scanning with Nmap NSE

Xunfeng ⭐ 2,946

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Vulmap ⭐ 2,935

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Dalfox ⭐ 2,858

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Nettacker ⭐ 2,584

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Black Hat Rust ⭐ 2,485

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Dockle ⭐ 2,461

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

Awesome Nodejs Security ⭐ 2,292

Awesome Node.js Security resources

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Nodejsscan ⭐ 2,230

nodejsscan is a static security code scanner for Node.js applications.

Snoop ⭐ 2,224

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Snallygaster ⭐ 1,998

Tool to scan for secret files on HTTP servers

Appinfoscanner ⭐ 1,975

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网

Is Website Vulnerable ⭐ 1,866

finds publicly known security vulnerabilities in a website's frontend JavaScript libraries

Gohacktools ⭐ 1,820

Hacker tools on Go (Golang)

Reconnoitre ⭐ 1,701

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

100 Redteam Projects ⭐ 1,521

Projects for security students

Reconspider ⭐ 1,488

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Iniscan ⭐ 1,443

A php.ini scanner for best security practices

Ggshield ⭐ 1,380

Find and fix 360+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.

🖖 Fast, modern, easy-to-use network scanner

Lunasec ⭐ 1,307

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunase

Murphysec ⭐ 1,293

An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全，具备专业的软件成分分析（SCA）、漏洞检测、专业漏洞库。

Atscan ⭐ 1,238

Advanced dork Search & Mass Exploit Scanner

Noseyparker ⭐ 1,162

Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.

Pi.alert ⭐ 1,141

WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices

Kubeclarity ⭐ 1,078

KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems

Vhostscan ⭐ 1,064

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Changeme ⭐ 1,058

A default credential scanner.

Kubesec ⭐ 1,021

Security risk analysis for Kubernetes resources

K8cscan ⭐ 996

K8Ladon大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用 C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆 Strike联动

Dockerscan ⭐ 963

Docker security analysis & hacking tools

Horusec ⭐ 946

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

Codeql Action ⭐ 916

Actions for running CodeQL analysis

Dumpall ⭐ 865

一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出

Cve Bin Tool ⭐ 853

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

Tsunami Security Scanner Plugins ⭐ 828

This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.

Security Code Scan ⭐ 801

Vulnerability Patterns Detector for C# and VB.NET

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫

Routeros ⭐ 762

RouterOS Security Research Tooling and Proof of Concepts

Leaky Paths ⭐ 746

A collection of special paths linked to common internal paths, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Strelka ⭐ 736

Real-time, container-based file scanning at enterprise scale

Kube Scan ⭐ 734

kube-scan: Octarine k8s cluster risk assessment tool

Webanalyze ⭐ 723

Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.

Security scanner coordinator

Gourdscanv2 ⭐ 683

被动式漏洞扫描系统

Security Data Analysis And Visualization ⭐ 681

2018-2020青年安全圈-活跃技术博主/博客

Web Cache Vulnerability Scanner ⭐ 672

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

Sqliscanner ⭐ 640

Automatic SQL injection with Charles and sqlmap api

Autopwn Suite ⭐ 636

AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.

Repo Supervisor ⭐ 621

Scan your code for security misconfiguration, search for passwords and secrets. 🔍

Openvas Docker ⭐ 606

A Docker container for Openvas

Jackhammer ⭐ 599

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Hijackthis ⭐ 587

A free utility that finds malware, adware and other security threats

An intelligence gathering tool for hacking Bluetooth

Patrowlmanager ⭐ 582

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Ronin is a Free and Open Source Ruby Toolkit for Security Research and Development. Ronin also allows for the rapid development and distribution of code, exploits, payloads, etc, via 3rd party git repositories.

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Mobilehackersweapons ⭐ 562

Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting

Trivy Action ⭐ 544

Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities

Hellraiser ⭐ 528

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Ssh Auditor ⭐ 523

The best way to scan for weak ssh passwords on your network

Auto Scanning to SSL Vulnerability

Kubestriker ⭐ 500

A Blazing fast Security Auditing tool for Kubernetes

Related Searches

Security Vulnerabilities (12,345)

Laravel Security (11,580)

Php Security (10,611)

Python Scanner (3,733)

Python Security (3,710)

Javascript Security (2,859)

Html Security (2,245)

Java Scanner (1,470)

Golang Security (1,385)

Shell Security (1,159)

1-100 of 642 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2023 Awesome Open Source. All rights reserved.