Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for vulnerabilities security tools
security-tools
x
vulnerabilities
x
71 search results found
Trivy
⭐
20,160
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Vuls
⭐
10,487
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Brakeman
⭐
6,840
A static analysis security vulnerability scanner for Ruby on Rails applications
Awesome Hacker Search Engines
⭐
6,307
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
Cve
⭐
5,806
Gather and update all available and newest CVEs with their PoC.
Reconftw
⭐
5,204
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Threatmapper
⭐
4,534
Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
Pocsuite3
⭐
3,412
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Vulmap
⭐
2,935
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
Awesome Hacking
⭐
2,716
Awesome hacking is an awesome collection of hacking tools.
Dockle
⭐
2,534
Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
Jaeles
⭐
1,951
The Swiss Army knife for automated Web Application Testing
Pwndoc
⭐
1,827
Pentest Report Generator
Awesome Golang Security
⭐
1,768
Awesome Golang Security resources 🕶🔐
Vulnx
⭐
1,763
vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collection (including sub-domain name, ip address, country information, organizational information and time zone, etc.) and vulnerability scanning.
Bearer
⭐
1,554
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Opencve
⭐
1,536
CVE Alerting Platform
Rapidscan
⭐
1,489
🆕 The Multi-Tool Web Vulnerability Scanner.
Osv.dev
⭐
1,389
Open source vulnerability DB and triage service.
Pocassist
⭐
1,341
傻瓜式漏洞PoC测试框架
A Red Teamer Diaries
⭐
1,294
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Cve Bin Tool
⭐
997
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
Awesome Php Security
⭐
886
Awesome PHP Security Resources 🕶🐘🔐
Awesome Python Security
⭐
867
Awesome Python Security resources 🕶🐍🔐
Npq
⭐
811
🎖safely* install packages with npm or yarn by auditing them as part of your install process
Pompem
⭐
794
Find exploit tool
Ossa
⭐
711
Open-Source Security Architecture | 开源安全架构
Betterscan Ce
⭐
673
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)
Vampi
⭐
659
Vulnerable REST API with OWASP top 10 vulnerabilities for security testing
Scant3r
⭐
657
ScanT3r - Module based Bug Bounty Automation Tool
Patrowlmanager
⭐
598
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Packj
⭐
573
Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
Jok3r
⭐
564
Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework
Huskyci
⭐
557
Performing security tests inside your CI
Envizon
⭐
519
network visualization & pentest reporting
Steady
⭐
514
Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/
Sandworm Audit
⭐
455
Security & License Compliance For Your App's Dependencies 🪱
Vulnerablecode
⭐
447
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
Eraser
⭐
436
🧹 Cleaning up images from Kubernetes nodes
Awesome Ruby Security
⭐
433
Awesome Ruby Security resources
Awesome Dotnet Security
⭐
430
Awesome .NET Security Resources
Gradejs
⭐
399
GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.
Vulscan
⭐
382
vulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命
Super
⭐
373
Secure, Unified, Powerful and Extensible Rust Android Analyzer
Taipan
⭐
369
Web application vulnerability scanner
Wssat
⭐
367
WEB SERVICE SECURITY ASSESSMENT TOOL
Dotdotslash
⭐
366
Search for Directory Traversal Vulnerabilities
Vulnrepo
⭐
364
VULNRΞPO - Free vulnerability report generator and repository end-to-end encrypted. Complete templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, methodologies and much more!
Vulny Code Static Analysis
⭐
301
Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex
Raptor
⭐
294
Web-based Source Code Vulnerability Scanner
Awesome Java Security
⭐
291
Awesome Java Security Resources 🕶☕🔐
Pwndoc Ng
⭐
273
Pentest Report Generator
Salt Scanner
⭐
255
Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration
Security Scripts
⭐
238
A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)
Linux Soft Exploit Suggester
⭐
204
Search Exploitable Software on Linux
Handbook
⭐
196
A living document for penetration testing and offensive security.
Inthewilddb
⭐
183
Hourly updated database of exploit and exploitation reports
Pyscan
⭐
172
python dependency vulnerability scanner, written in Rust.
Bulwark
⭐
163
An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Log4jscanwin
⭐
154
Log4j Vulnerability Scanner for Windows
Vmass
⭐
148
vMass Bot 🪝 Vulnerability Scanner & Auto Exploiter Tool Written in Perl.
Scanner And Patcher
⭐
145
A Web Vulnerability Scanner and Patcher
Nerve
⭐
140
NERVE Continuous Vulnerability Scanner
Detexploit
⭐
139
OSS Vulnerability Scanner for Windows Platform
Vulnogram
⭐
138
Vulnogram is a tool for creating and editing CVE information in CVE JSON format
Ossf Cve Benchmark
⭐
131
The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.
Find Gh Poc
⭐
117
Find CVE PoCs on GitHub
Madmax
⭐
98
Ethereum Static Vulnerability Detector for Gas-Focussed Vulnerabilities
Patton
⭐
92
The clever vulnerability dependency finder
Mixewayhub
⭐
92
Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.
Deeptracy
⭐
84
The Security Dependency Orchestrator Service
Secator
⭐
77
Secator - the pentester's swiss knife
Purify
⭐
76
All-in-one tool for managing vulnerability reports from AppSec pipelines
Log4j
⭐
74
Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
Snyk Maven Plugin
⭐
68
Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
Massvulscan
⭐
62
Bash script which quickly identifies open network ports and any associated vulnerabilities / Script Bash qui permet d'identifier rapidement les ports réseaux ouverts et les éventuelles vulnérabilités associées.
Cloudrasp Log4j2
⭐
62
一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.
Skjold
⭐
59
Security audit Python project dependencies against security advisory databases.
Codeallthethings
⭐
58
A list of threat sinks used in the manual security source code review for application security
Hikpwn
⭐
58
HikPwn, a simple scanner for Hikvision devices with basic vulnerability scanning capabilities written in Python 3.8.
Containers
⭐
53
Automated privilege escalation of the world's most popular Docker images.
Phaser
⭐
53
Automated attack surface mapper and vulnerability scanner (Work In Progress 🚧)
Shellshockhunter
⭐
52
It's a simple tool for test vulnerability shellshock
Deepfence_runtime_api
⭐
50
Deepfence Runtime API & code samples
Ciscoasa_honeypot
⭐
50
A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.
Xssmap
⭐
49
Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
Ochrona Cli
⭐
48
A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
Cve 2021 3129
⭐
48
Laravel RCE (CVE-2021-3129)
Patton Cli
⭐
42
The knife of the Admin & Security auditor
Brokensmtp
⭐
41
Small python script to look for common vulnerabilities on SMTP server.
Xattacker
⭐
39
X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Iskan
⭐
31
Kubernetes Native, Runtime Container Image Scanning
Weblogic_honeypot
⭐
31
WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.
Clair Cicd
⭐
29
Making CoreOS' Clair easily work in CI/CD pipelines
Pip Rating
⭐
27
Check the health of your project's requirements and get a score for each dependency.
Owasp Zap Jwt Addon
⭐
27
OWASP ZAP addon for finding vulnerabilities in JWT Implementations
Zip Shotgun
⭐
25
Utility script to test zip file upload functionality (and possible extraction of zip files) for vulnerabilities (aka Zip Slip)
Pie My Vulns
⭐
24
Visualize your project security vulnerabilities as a pie chart in the terminal
Orchestron Community
⭐
24
Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulnerabilities early in the lifecycle"
Jfrog Docker Desktop Extension
⭐
21
🐸 Scans any of your local Docker images for security vulnerabilities. 🐋
Related Searches
Security Vulnerabilities (12,350)
Laravel Vulnerabilities (11,319)
Php Vulnerabilities (8,887)
Javascript Vulnerabilities (1,306)
Python Vulnerabilities (1,159)
Vulnerabilities Scanner (695)
Vulnerabilities Exploitation (636)
Python Security Tools (592)
1-71 of 71 search results
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.