Awesome Open Source

Programming Languages

Search results for security scanner

288 search results found

Trivy ⭐ 20,160

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Nuclei ⭐ 16,189

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Bettercap ⭐ 15,224

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Trufflehog ⭐ 13,788

Find and verify credentials

Rustscan ⭐ 12,153

🤖 The Modern Port Scanner 🤖

Routersploit ⭐ 11,818

Exploitation Framework for Embedded Devices

Dirsearch ⭐ 11,165

Web path scanner

Awesome Security ⭐ 10,930

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

Vuls ⭐ 10,487

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Tsunami Security Scanner ⭐ 8,012

Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

Wpscan ⭐ 7,996

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via [email protected]

Fuzzdb ⭐ 7,703

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

Nuclei Templates ⭐ 7,614

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Grype ⭐ 7,107

A vulnerability scanner for container images and filesystems

Codeql ⭐ 6,742

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

Tfsec ⭐ 6,548

Security scanner for your Terraform code

Yakit ⭐ 5,790

Cyber Security ALL-IN-ONE Platform

Poc In Github ⭐ 5,704

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Awesome Web Hacking ⭐ 5,260

A list of web application security

Reconftw ⭐ 5,204

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Whatweb ⭐ 5,096

Next generation web scanner

Osmedeus ⭐ 5,076

A Workflow Engine for Offensive Security

Ladon ⭐ 4,564

Ladon大型内网渗透工具，可PowerShell模块化、可CS插件化、可内存加载，无文件扫描。含端 12.2内置262个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SM

Terrascan ⭐ 4,500

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Shhgit ⭐ 3,723

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

Webhackersweapons ⭐ 3,555

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

Retire.js ⭐ 3,448

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.

Sslyze ⭐ 3,071

Fast and powerful SSL/TLS scanning library.

Kscan ⭐ 3,061

Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议

Dalfox ⭐ 3,047

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

Vulscan ⭐ 2,983

Advanced vulnerability scanning with Nmap NSE

Xunfeng ⭐ 2,946

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Vulmap ⭐ 2,935

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Nettacker ⭐ 2,915

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Black Hat Rust ⭐ 2,662

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Dockle ⭐ 2,534

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

Snoop ⭐ 2,530

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Awesome Nodejs Security ⭐ 2,515

Awesome Node.js Security resources

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Nodejsscan ⭐ 2,275

nodejsscan is a static security code scanner for Node.js applications.

Gohacktools ⭐ 2,069

Hacker tools on Go (Golang)

Reconnoitre ⭐ 2,053

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Snallygaster ⭐ 2,011

Tool to scan for secret files on HTTP servers

Appinfoscanner ⭐ 1,975

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网

Is Website Vulnerable ⭐ 1,866

finds publicly known security vulnerabilities in a website's frontend JavaScript libraries

Pi.alert ⭐ 1,729

WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices

Reconspider ⭐ 1,729

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

100 Redteam Projects ⭐ 1,661

Projects for security students

Murphysec ⭐ 1,502

An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全，具备专业的软件成分分析（SCA）、漏洞检测、专业漏洞库。

Ggshield ⭐ 1,474

Find and fix 360+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.

Iniscan ⭐ 1,443

A php.ini scanner for best security practices

🖖 Fast, modern, easy-to-use network scanner

Lunasec ⭐ 1,355

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunase

Noseyparker ⭐ 1,313

Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.

Atscan ⭐ 1,270

Advanced dork Search & Mass Exploit Scanner

Kubeclarity ⭐ 1,192

KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems

K8cscan ⭐ 1,170

K8Ladon大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用 C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆 Strike联动

Vhostscan ⭐ 1,114

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Kubesec ⭐ 1,101

Security risk analysis for Kubernetes resources

Changeme ⭐ 1,058

A default credential scanner.

Perun ⭐ 1,037

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫

Horusec ⭐ 1,000

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

Cve Bin Tool ⭐ 997

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

Codeql Action ⭐ 989

Actions for running CodeQL analysis

Dockerscan ⭐ 963

Docker security analysis & hacking tools

Ssh Snake ⭐ 874

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

Dumpall ⭐ 865

一款信息泄漏利用工具，适用于.git/.svn/.DS_Store泄漏和目录列出

Tsunami Security Scanner Plugins ⭐ 840

This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.

Security Code Scan ⭐ 801

Vulnerability Patterns Detector for C# and VB.NET

Webanalyze ⭐ 776

Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.

Strelka ⭐ 767

Real-time, container-based file scanning at enterprise scale

Routeros ⭐ 762

RouterOS Security Research Tooling and Proof of Concepts

Web Cache Vulnerability Scanner ⭐ 756

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

Leaky Paths ⭐ 746

A collection of special paths linked to common internal paths, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Kube Scan ⭐ 734

kube-scan: Octarine k8s cluster risk assessment tool

Openvas Docker ⭐ 717

A Docker container for Openvas

Dawnscanner ⭐ 714

Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.

Security scanner coordinator

Witnessme ⭐ 696

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Gourdscanv2 ⭐ 683

被动式漏洞扫描系统

Security Data Analysis And Visualization ⭐ 681

2018-2020青年安全圈-活跃技术博主/博客

Sqliscanner ⭐ 640

Automatic SQL injection with Charles and sqlmap api

Autopwn Suite ⭐ 636

AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.

Hijackthis ⭐ 623

A free utility that finds malware, adware and other security threats

Repo Supervisor ⭐ 621

Scan your code for security misconfiguration, search for passwords and secrets. 🔍

Trivy Action ⭐ 613

Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities

Ronin is a Free and Open Source Ruby Toolkit for Security Research and Development. Ronin also allows for the rapid development and distribution of code, exploits, payloads, etc, via 3rd party git repositories.

Jackhammer ⭐ 599

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Patrowlmanager ⭐ 598

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Mobilehackersweapons ⭐ 586

Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting

An intelligence gathering tool for hacking Bluetooth

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Hellraiser ⭐ 545

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Ssh Auditor ⭐ 523

The best way to scan for weak ssh passwords on your network

Hacking ⭐ 515

hacker, ready for more of our story ! 🚀

Aws Recon ⭐ 508

Multi-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.

Auto Scanning to SSL Vulnerability

Related Searches

Security Vulnerabilities (12,358)

Laravel Security (11,580)

Php Security (10,611)

Python Scanner (3,793)

Javascript Security (2,921)

Html Security (2,284)

Python Security (1,733)

Java Scanner (1,470)

Javascript Scanner (1,359)

Golang Security (1,316)

1-100 of 288 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.