Awesome Open Source
Search results for security vulnerability detection
96 search results found
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Fast and customizable vulnerability scanner based on simple YAML based DSL.
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Community curated list of templates for the nuclei engine to find security vulnerabilities.
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
Web Application Security Scanner Framework
Advanced vulnerability scanning with Nmap NSE
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.
Metlo is an open-source API security platform.
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全，具备专业的软件成分分析（SCA）、漏洞检测、专业漏洞库。
grep rough audit - source code auditing tool
The Correlated CVE Vulnerability And Threat Intelligence Database API
Kubernetes-native security toolkit
Easy automated vulnerability scanning, reporting and analysis
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
Detect, analyze and uniquely identify crashes in Windows applications
Wazuh - Docker containers
XAttacker Tool PRO V30 Website Vulnerability Scanner & Auto Exploiter
Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
Wazuh Kibana App
Wazuh - Kibana plugin
A modular web reconnaissance tool and vulnerability scanner.
A tool for identifying misconfigured CloudFront domains
Open-source vulnerability scanner
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Wazuh - Ansible playbook
Missing Cve Nuclei Templates
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
Greenbone Security Assistant - The web frontend for the Greenbone Community Edition
qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
NERVE Continuous Vulnerability Scanner
OSS Vulnerability Scanner for Windows Platform
Wazuh - Project documentation
Ethical hacking, made easy.
Scanner And Patcher
A Web Vulnerability Scanner and Patcher
A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Automated security testing using bandit and flake8.
Burp Molly Pack
Security checks pack for Burp Suite
CertWatcher is a tool for capture and tracking certificate transparency logs, using YAML templates based DSL.
🐞 Primitive Erlang Security Tool
Grunt plugin for retire.
Wazuh - Tools for packages creation
Security audit Python project dependencies against security advisory databases.
Nmap script that looks for probable vulnerabilities based on services discovered in open ports.
Wazuh - RESTful API
Static and dynamic Android application security analysis
Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
Wazuh - Splunk App
The knife of the Admin & Security auditor
Dependency Check Py
🔐 Shim to easily install OWASP dependency-check-cli into Python projects
Wazuh - Amazon AWS Cloudformation
Wazuh - Puppet module
ITWSV- Integrated Tool for Web Security Vulnerability
The NowSecure Action delivers fast, accurate, automated security analysis of iOS and Android apps coded in any language
Security testing library written in F# to make writing security tests more fun.
Adding this GitHub Action will scan your repository for sensitive data in your source code. We find things like passwords, server host strings, API keys, .env and config files and more
Labsecurity is a tool that bundles ethical hacking python scripts into a single tool with cli interface.
A GitHub Action that scans your public web applications after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
Central Processing Unit Information Gathering Tool
Wazuh - Chef cookbooks
Fuzz testing framework for network protocols.
Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities database.
Curating Falco rules with MITRE ATT&CK Matrix
Bytesafe Community Edition is a security platform that protects organizations from open source software supply chain attacks.
Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.
Security testing framework for repositories and source code
A GitHub Action for using SecureStack to analyse a repository codebase for vulnerabilities in library dependencies (software composition analysis).
Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
🚀 blazing-fast pentesting suite written in Go
Wazuh - Release for Bosh.io
w4af: web advanced application attack and audit framework, the open source web vulnerability scanner.
Deep Security Smart Check Scan Action
🔍 For scanning your images as part of your CI pipeline using Cloud One Container Security (Formerly Deep Security Smart Check)
Test Ssh Action
SSH server vulnerability and security scanner with Operous
Azure security configuration automation tool and library
Findbugs Security Docker
FindBugs + Find Security Bugs -plugin in Docker image
PHP Open Iast Agent
Ansible Role Linux Wazuh
Ansible role for install and configure Wazuh manager on Linux operating system.
Wazuh Kubernetes Helmchart
Wazuh - Wazuh Kubernetes Helm chart. This repo is not maintained by Wazuh team. This is community project.
VAITP - Vulnerability Attack and Injection Tool for Python
Python 3 package providing basic fuzzing support
FOSS security and community health assessment tool 🛡
fsp - Firestore Database Vulnerability Scanner Using APKs
The Eclipse OpenSmartCLIDE Security Component
Cascade - Dataflow graphing and analysis for C#
GitHub action to download and install Xanitizer, and to run a Xanitizer security analysis in a GitHub workflow.
SADA Webapplication Scanner
Security Vulnerabilities (12,340)
Laravel Security (11,580)
Php Security (10,611)
Python Security (3,482)
Java Security (2,468)
Html Security (2,241)
Golang Security (1,229)
Shell Security (1,085)
Security Authentication (906)
1-96 of 96 search results
Follow Us On Twitter
Copyright 2018-2023 Awesome Open Source. All rights reserved.