Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for security tools vulnerability scanner
security-tools
x
vulnerability-scanner
x
24 search results found
Trivy
⭐
20,160
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Lynis
⭐
12,150
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Vuls
⭐
10,487
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Osv Scanner
⭐
5,632
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
Scan4all
⭐
5,261
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Threatmapper
⭐
4,534
Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
Nettacker
⭐
2,915
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
Secretscanner
⭐
2,900
🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓
Emba
⭐
2,229
EMBA - The firmware security analyzer
Kics
⭐
1,882
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Rapidscan
⭐
1,489
🆕 The Multi-Tool Web Vulnerability Scanner.
Xattacker
⭐
1,486
X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Osv.dev
⭐
1,389
Open source vulnerability DB and triage service.
Pocassist
⭐
1,341
傻瓜式漏洞PoC测试框架
Satansword
⭐
1,048
红队综合渗透框架
Perun
⭐
1,037
Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫
Trivy Operator
⭐
886
Kubernetes-native security toolkit
Ssh Snake
⭐
874
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
Web Cache Vulnerability Scanner
⭐
756
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
Ossa
⭐
711
Open-Source Security Architecture | 开源安全架构
Betterscan Ce
⭐
673
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)
Dep Scan
⭐
673
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
Autopwn Suite
⭐
636
AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.
Patrowlmanager
⭐
598
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Packj
⭐
573
Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
Jok3r
⭐
564
Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework
Hellraiser
⭐
551
Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
Ppfuzz
⭐
460
A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
Sandworm Audit
⭐
455
Security & License Compliance For Your App's Dependencies 🪱
Vulnerablecode
⭐
447
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
Eraser
⭐
436
🧹 Cleaning up images from Kubernetes nodes
Sec Tools
⭐
412
🍉一款基于Python-Django的多功能Web安全渗透测试工具,包含漏洞扫描,端口扫描,指纹识
Bomber
⭐
406
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
Vulscan
⭐
382
vulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命
Artemis
⭐
357
A modular vulnerability scanner with automatic report generation capabilities.
Raptor
⭐
294
Web-based Source Code Vulnerability Scanner
Progpilot
⭐
288
A static analysis tool for security
Lazytrivy
⭐
258
Vulnerability scanning just got lazier
Salt Scanner
⭐
255
Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration
Mageni
⭐
251
Open-source vulnerability scanner
Missing Cve Nuclei Templates
⭐
249
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
Sandworm Guard Js
⭐
245
Easy auditing & sandboxing for your JavaScript dependencies 🪱
Embark
⭐
245
EMBArk - The firmware security scanning environment
Patrowlengines
⭐
240
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Sechub
⭐
228
SecHub provides a central API to test software with different security tools.
Gsec
⭐
218
Web Security Scanner
Jira Lens
⭐
213
Fast and customizable vulnerability scanner For JIRA written in Python
Inthewilddb
⭐
183
Hourly updated database of exploit and exploitation reports
Pyscan
⭐
172
python dependency vulnerability scanner, written in Rust.
Vmass
⭐
148
vMass Bot 🪝 Vulnerability Scanner & Auto Exploiter Tool Written in Perl.
Scanner And Patcher
⭐
145
A Web Vulnerability Scanner and Patcher
Nerve
⭐
140
NERVE Continuous Vulnerability Scanner
Detexploit
⭐
139
OSS Vulnerability Scanner for Windows Platform
Patrowldocs
⭐
118
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Mixewayhub
⭐
92
Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.
Certwatcher
⭐
92
CertWatcher is a tool for capture and tracking certificate transparency logs, using YAML templates based DSL.
Secator
⭐
77
Secator - the pentester's swiss knife
Last
⭐
77
Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys.
Purify
⭐
76
All-in-one tool for managing vulnerability reports from AppSec pipelines
Saker
⭐
68
Flexible Penetrate Testing Auxiliary Suite
Aparoid
⭐
55
Static and dynamic Android application security analysis
Phaser
⭐
53
Automated attack surface mapper and vulnerability scanner (Work In Progress 🚧)
Ghaction Container Scan
⭐
52
GitHub Action to check for vulnerabilities in your container image
Falco_extended_rules
⭐
49
Curating Falco rules with MITRE ATT&CK Matrix
Osv Detector
⭐
48
Ochrona Cli
⭐
48
A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
Xattacker
⭐
39
X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Faraday_plugins
⭐
36
Security tools report parsers for Faradaysec.com
Whispers
⭐
34
Identify hardcoded secrets in static structured text (version 2)
Archer
⭐
34
Distributed network and vulnerability scanner
Delosnmap
⭐
34
delosNmap | Nmap Script
Iskan
⭐
31
Kubernetes Native, Runtime Container Image Scanning
Faraday_agent_dispatcher
⭐
30
Faraday Agent Dispatcher launches any security tools and send results to Faradaysec Platform.
Prestascansecurity
⭐
25
PrestaScan Security is a PrestaShop module allowing you to scan your PrestaShop website to identify malware and known vulnerabilities in PrestaShop core and modules.
Cryptolyzer
⭐
22
CryptoLyzer is a fast, flexible and comprehensive server cryptographic protocol (TLS, SSL, SSH, DNSSEC) and related setting (HTTP headers, DNS records) analyzer and fingerprint (JA3, HASSH tag) generator with Python API and CLI. (read-only clone of the original GitLab project)
Cybersecurity Application Security
⭐
21
An ongoing & curated collection of awesome software practices and remediation, libraries and frameworks,payloads and techniques, best guidelines and technical resources about Application Security
Labsecurity
⭐
21
Labsecurity is a tool that bundles ethical hacking python scripts into a single tool with cli interface.
Web Scraper
⭐
20
Web Scraper is a melange of Web tools for web hacking, reconnaissance, bug bounty so on. This tool consists of 20 most used web tools for security assessment
Awesome Software Supply Chain Security
⭐
20
Sharing software supply chain security open source projects
Openvas Docker
⭐
20
A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)
Fenix Vm
⭐
19
Backend logic implementation for Vulnerability Management System
Unauthorized_com
⭐
19
未授权检测的命令行版,支持批量检测
Xforwardy
⭐
18
Host Header Injection Scanner
Ppfang
⭐
17
A tool which helps identifying client-side prototype polluting libraries
Protocol Analyzer
⭐
16
Fuzz testing framework for network protocols.
Badmoodle
⭐
15
Moodle community-based vulnerability scanner
Automacrobuilderforzap
⭐
15
A ZAPROXY Add-on that allows testing of web application vulnerabilities by recording complex multi-step sequences. You can test applications that need to access pages in a specific order, such as shopping carts or registration of member information.
Pyraider
⭐
15
Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities database.
Watchtower
⭐
14
AIShield Watchtower: Dive Deep into AI's Secrets! 🔍 Open-source tool by AIShield for AI model insights & vulnerability scans. Secure your AI supply chain today! ⚙️🛡️
Burp Suite Pro 2023
⭐
13
A Bash and PowerShell script for acquiring the most recent edition of Burp Suite Professional 2023 without charge.
Sandworm Jest
⭐
13
Security Snapshot Testing Inside Your Jest Test Suite 🪱
Actions Log4j
⭐
11
A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
Kali Dockerized
⭐
11
Kali Linux in Docker + Ubuntu 22.04 in Docker for Bug Bounty, Penetration Testing, Security Research, Computer Forensics and Reverse Engineering. Kali Linux inside with Docker with or without support with systemd, repository also contains Proof of Concept with kind (Kubernetes in Docker) to test Kali Linux with enabled systemd in K8s cluster
Actions Code
⭐
11
A GitHub Action for using SecureStack to analyse a repository codebase for vulnerabilities in library dependencies (software composition analysis).
Helios
⭐
11
A Python based Web Application security scanner
Spring Break_cve 2017 8046
⭐
10
This is a Java program that exploits Spring Break vulnerability (CVE-2017-8046).
Springbreakvulnerableapp
⭐
9
WARNING: This is a vulnerable application to test the exploit for the Spring Break vulnerability (CVE-2017-8046). Run it at your own risk!
Pluto
⭐
8
一款集成了几十G工具的透测试系统-冥王星
Vscode Snyk
⭐
8
Visual Studio Code extension for Snyk.io
Gitlab_rce_cve 2022 2884
⭐
7
Exploits GitLab authenticated RCE vulnerability known as CVE-2022-2884.
Related Searches
Python Security Tools (592)
1-24 of 24 search results
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.