Awesome Open Source

Programming Languages

Search results for vulnerabilities security tools

security-tools x

vulnerabilities x

71 search results found

Trivy ⭐ 20,160

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Vuls ⭐ 10,487

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Brakeman ⭐ 6,840

A static analysis security vulnerability scanner for Ruby on Rails applications

Awesome Hacker Search Engines ⭐ 6,307

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Gather and update all available and newest CVEs with their PoC.

Reconftw ⭐ 5,204

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Threatmapper ⭐ 4,534

Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.

Pocsuite3 ⭐ 3,412

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

Vulmap ⭐ 2,935

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Awesome Hacking ⭐ 2,716

Awesome hacking is an awesome collection of hacking tools.

Dockle ⭐ 2,534

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

Jaeles ⭐ 1,951

The Swiss Army knife for automated Web Application Testing

Pwndoc ⭐ 1,827

Pentest Report Generator

Awesome Golang Security ⭐ 1,768

Awesome Golang Security resources 🕶🔐

Vulnx ⭐ 1,763

vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collection (including sub-domain name, ip address, country information, organizational information and time zone, etc.) and vulnerability scanning.

Bearer ⭐ 1,554

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Opencve ⭐ 1,536

CVE Alerting Platform

Rapidscan ⭐ 1,489

🆕 The Multi-Tool Web Vulnerability Scanner.

Osv.dev ⭐ 1,389

Open source vulnerability DB and triage service.

Pocassist ⭐ 1,341

傻瓜式漏洞PoC测试框架

A Red Teamer Diaries ⭐ 1,294

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Cve Bin Tool ⭐ 997

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

Awesome Php Security ⭐ 886

Awesome PHP Security Resources 🕶🐘🔐

Awesome Python Security ⭐ 867

Awesome Python Security resources 🕶🐍🔐

🎖safely* install packages with npm or yarn by auditing them as part of your install process

Find exploit tool

Open-Source Security Architecture | 开源安全架构

Betterscan Ce ⭐ 673

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)

Vulnerable REST API with OWASP top 10 vulnerabilities for security testing

Scant3r ⭐ 657

ScanT3r - Module based Bug Bounty Automation Tool

Patrowlmanager ⭐ 598

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Huskyci ⭐ 557

Performing security tests inside your CI

Envizon ⭐ 519

network visualization & pentest reporting

Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/

Sandworm Audit ⭐ 455

Security & License Compliance For Your App's Dependencies 🪱

Vulnerablecode ⭐ 447

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

🧹 Cleaning up images from Kubernetes nodes

Awesome Ruby Security ⭐ 433

Awesome Ruby Security resources

Awesome Dotnet Security ⭐ 430

Awesome .NET Security Resources

Gradejs ⭐ 399

GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.

Vulscan ⭐ 382

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Web application vulnerability scanner

WEB SERVICE SECURITY ASSESSMENT TOOL

Dotdotslash ⭐ 366

Search for Directory Traversal Vulnerabilities

Vulnrepo ⭐ 364

VULNRΞPO - Free vulnerability report generator and repository end-to-end encrypted. Complete templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, methodologies and much more!

Vulny Code Static Analysis ⭐ 301

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

Web-based Source Code Vulnerability Scanner

Awesome Java Security ⭐ 291

Awesome Java Security Resources 🕶☕🔐

Pwndoc Ng ⭐ 273

Pentest Report Generator

Salt Scanner ⭐ 255

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Security Scripts ⭐ 238

A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)

Linux Soft Exploit Suggester ⭐ 204

Search Exploitable Software on Linux

Handbook ⭐ 196

A living document for penetration testing and offensive security.

Inthewilddb ⭐ 183

Hourly updated database of exploit and exploitation reports

python dependency vulnerability scanner, written in Rust.

Bulwark ⭐ 163

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Log4jscanwin ⭐ 154

Log4j Vulnerability Scanner for Windows

vMass Bot 🪝 Vulnerability Scanner & Auto Exploiter Tool Written in Perl.

Scanner And Patcher ⭐ 145

A Web Vulnerability Scanner and Patcher

NERVE Continuous Vulnerability Scanner

Detexploit ⭐ 139

OSS Vulnerability Scanner for Windows Platform

Vulnogram ⭐ 138

Vulnogram is a tool for creating and editing CVE information in CVE JSON format

Ossf Cve Benchmark ⭐ 131

The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebases using a variety of static analysis security testing (SAST) tools and generate reports to evaluate those tools.

Find Gh Poc ⭐ 117

Find CVE PoCs on GitHub

Ethereum Static Vulnerability Detector for Gas-Focussed Vulnerabilities

The clever vulnerability dependency finder

Mixewayhub ⭐ 92

Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.

Deeptracy ⭐ 84

The Security Dependency Orchestrator Service

Secator - the pentester's swiss knife

All-in-one tool for managing vulnerability reports from AppSec pipelines

Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.

Snyk Maven Plugin ⭐ 68

Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.

Massvulscan ⭐ 62

Bash script which quickly identifies open network ports and any associated vulnerabilities / Script Bash qui permet d'identifier rapidement les ports réseaux ouverts et les éventuelles vulnérabilités associées.

Cloudrasp Log4j2 ⭐ 62

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

Security audit Python project dependencies against security advisory databases.

Codeallthethings ⭐ 58

A list of threat sinks used in the manual security source code review for application security

HikPwn, a simple scanner for Hikvision devices with basic vulnerability scanning capabilities written in Python 3.8.

Containers ⭐ 53

Automated privilege escalation of the world's most popular Docker images.

Automated attack surface mapper and vulnerability scanner (Work In Progress 🚧)

Shellshockhunter ⭐ 52

It's a simple tool for test vulnerability shellshock

Deepfence_runtime_api ⭐ 50

Deepfence Runtime API & code samples

Ciscoasa_honeypot ⭐ 50

A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.

Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities

Ochrona Cli ⭐ 48

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

Cve 2021 3129 ⭐ 48

Laravel RCE (CVE-2021-3129)

Patton Cli ⭐ 42

The knife of the Admin & Security auditor

Brokensmtp ⭐ 41

Small python script to look for common vulnerabilities on SMTP server.

Xattacker ⭐ 39

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Kubernetes Native, Runtime Container Image Scanning

Weblogic_honeypot ⭐ 31

WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.

Clair Cicd ⭐ 29

Making CoreOS' Clair easily work in CI/CD pipelines

Pip Rating ⭐ 27

Check the health of your project's requirements and get a score for each dependency.

Owasp Zap Jwt Addon ⭐ 27

OWASP ZAP addon for finding vulnerabilities in JWT Implementations

Zip Shotgun ⭐ 25

Utility script to test zip file upload functionality (and possible extraction of zip files) for vulnerabilities (aka Zip Slip)

Pie My Vulns ⭐ 24

Visualize your project security vulnerabilities as a pie chart in the terminal

Orchestron Community ⭐ 24

Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulnerabilities early in the lifecycle"

Jfrog Docker Desktop Extension ⭐ 21

🐸 Scans any of your local Docker images for security vulnerabilities. 🐋

Related Searches

Security Vulnerabilities (12,350)

Laravel Vulnerabilities (11,319)

Php Vulnerabilities (8,887)

Javascript Vulnerabilities (1,306)

Python Vulnerabilities (1,159)

Vulnerabilities Scanner (695)

Vulnerabilities Exploitation (636)

Python Security Tools (592)

1-71 of 71 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.