Awesome Open Source

Programming Languages

Search results for security scanner

security-scanner x

229 search results found

Nuclei ⭐ 16,189

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Lynis ⭐ 12,150

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Zaproxy ⭐ 11,661

The ZAP core project

Vuls ⭐ 10,487

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Wpscan ⭐ 7,996

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via [email protected]

Bandit ⭐ 6,021

Bandit is a tool designed to find common security issues in Python code.

Scan4all ⭐ 5,261

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

Awesome Shodan Queries ⭐ 4,597

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Ladon ⭐ 4,564

Ladon大型内网渗透工具，可PowerShell模块化、可CS插件化、可内存加载，无文件扫描。含端 12.2内置262个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SM

Applicationinspector ⭐ 4,152

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

💡 A hinting engine for the web

Blackhat Arsenal Tools ⭐ 3,551

Official Black Hat Arsenal Security Tools Repository

Cobra ⭐ 3,111

Source Code Security Audit (源代码安全审计)

Vulscan ⭐ 2,983

Advanced vulnerability scanning with Nmap NSE

Raccoon ⭐ 2,928

A high performance offensive security tool for reconnaissance and vulnerability scanning

Kube Score ⭐ 2,463

Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in your Kubernetes YAML and Charts. Static code analysis for Kubernetes.

Nodejsscan ⭐ 2,275

nodejsscan is a static security code scanner for Node.js applications.

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

Reconnoitre ⭐ 2,053

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Sn0int ⭐ 1,749

Semi-automatic OSINT framework and package manager

Hacking With Golang ⭐ 1,693

Golang安全资源合集

Bearer ⭐ 1,554

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Rapidscan ⭐ 1,489

🆕 The Multi-Tool Web Vulnerability Scanner.

Xattacker ⭐ 1,486

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Slowhttptest ⭐ 1,395

Application Layer DoS attack simulator

Gitgot ⭐ 1,387

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

Passive Scan Client ⭐ 1,225

Burp被动扫描流量转发插件

Intrigue Core ⭐ 1,205

Discover Your Attack Surface!

Changeme ⭐ 1,058

A default credential scanner.

Enumeration sub domains(枚举子域名)

Cwe_checker ⭐ 996

cwe_checker finds vulnerable patterns in binary executables

Doublepulsar Detection Script ⭐ 993

A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.

Solhint ⭐ 977

Solhint is an open-source project to provide a linting utility for Solidity code.

Tsunami Security Scanner Plugins ⭐ 840

This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.

Golang Tls ⭐ 788

Simple Golang HTTPS/TLS Examples

Zap Extensions ⭐ 781

Web Cache Vulnerability Scanner ⭐ 756

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

Kube Scan ⭐ 734

kube-scan: Octarine k8s cluster risk assessment tool

Security scanner coordinator

Open-Source Security Architecture | 开源安全架构

Semgrep Rules ⭐ 698

Semgrep rules registry

Legitify ⭐ 689

Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets

Betterscan Ce ⭐ 673

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)

Scant3r ⭐ 657

ScanT3r - Module based Bug Bounty Automation Tool

Caringcaribou ⭐ 639

A friendly car security exploration tool for the CAN bus

Kubernetes RBAC static analysis & visualisation tool

Serverscan ⭐ 624

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

Jackhammer ⭐ 599

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Patrowlmanager ⭐ 598

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

LLM vulnerability scanner

Jsprime ⭐ 529

a javascript static security analysis tool

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

Okadminfinder3 ⭐ 473

[ Admin panel finder / Admin Login Page Finder ] ¢σ∂є∂ ву 👻 (❤-❤) 👻

Evilscan ⭐ 471

NodeJS Simple Network Scanner

Shodansploit ⭐ 437

🔎 shodansploit > v1.3.0

Pentesting automation platform that combines hacking tools to complete assessments

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Web application vulnerability scanner

Pentester Fully Automatic Scanner ⭐ 366

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

Artemis ⭐ 357

A modular vulnerability scanner with automatic report generation capabilities.

Tartufo ⭐ 351

Searches through git repositories for high entropy strings and secrets, digging deep into commit history

🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.

Ostorlab ⭐ 327

Ostorlab is a security scanning orchestrator for the modern age.

Vulny Code Static Analysis ⭐ 301

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

Parse: A Static Security Scanner

Security Checker ⭐ 282

A PHP dependency vulnerabilities scanner based on the Security Advisories Database.

Wsltools ⭐ 278

Web Scan Lazy Tools - Python Package

luna webscanner

Hsecscan ⭐ 276

A security scanner for HTTP response headers.

Insider ⭐ 255

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Salt Scanner ⭐ 255

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Portauthority ⭐ 252

A handy systems and security-focused tool, Port Authority is a very fast Android port scanner. Port Authority also allows you to quickly discover hosts on your network and will display useful network information about your device and other hosts.

EMBArk - The firmware security scanning environment

Patrowlengines ⭐ 240

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Security Scripts ⭐ 238

A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)

SecHub provides a central API to test software with different security tools.

Grinder ⭐ 220

🔎 Python framework to automatically discover and enumerate hosts from different back-end systems (Shodan, Censys)

Vuln Web Apps ⭐ 209

A curated list of vulnerable web applications.

Minesweeper ⭐ 188

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Kcare Uchecker ⭐ 180

A simple tool to detect outdated shared libraries

Argo is an automated general crawler for automatically obtaining website URLs . Argo 是一个自动化扫描器爬虫用于自动化获取网站的URL 基于go-rod实现了静态和动态结合的方式来实现

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

Sentinel Scanner ⭐ 170

Next Generation Distributed Web Security Scanner with Futuristic Architecture and UI 💫 混沌守望者（扫描器），多策略（爬虫扫描&POC 扫描）、模块化、分布式的智能网络空间测绘、管理与安全探测

Securify ⭐ 168

[DEPRECATED] Security Scanner for Ethereum Smart Contracts

Go Shodan ⭐ 167

Shodan API client

Automated brute-forcing attack tool.

Metaradar ⭐ 157

The app for BLE ether monitoring tracks your environment, finds some devices, makes relations between devices around you, and tracks devices' movements.

A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.

Scanner And Patcher ⭐ 145

A Web Vulnerability Scanner and Patcher

Sentrypeer ⭐ 142

Protect your SIP Servers from bad actors at https://sentrypeer.org

A humble, and fast!, security-oriented HTTP headers analyzer.

nmap is a PHP wrapper for Nmap.

Patrowldocs ⭐ 118

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Faster and more efficient stateless SYN scanner and banner grabber due to userland TCP/IP stack usage.

Intrigue Ident ⭐ 110

Application and Service Fingerprinting

Php Version Audit ⭐ 108

Audit your PHP version for known CVEs and patches

FIM is an Open Source Host-based file integrity monitoring tool that performs file system analysis, file integrity checking, real time alerting and provides Audit daemon data.

批量漏洞扫描框架

1-100 of 229 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.