Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for vulnerability assessment
vulnerability-assessment
x
108 search results found
Nuclei
⭐
16,189
Fast and customizable vulnerability scanner based on simple YAML based DSL.
H4cker
⭐
15,693
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
Lynis
⭐
12,150
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Vuls
⭐
10,487
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Vulscan
⭐
2,983
Advanced vulnerability scanning with Nmap NSE
Xunfeng
⭐
2,946
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Raccoon
⭐
2,928
A high performance offensive security tool for reconnaissance and vulnerability scanning
Openvas Scanner
⭐
2,836
This repository contains the scanner component for Greenbone Community Edition.
Archerysec
⭐
2,162
Automate Your Application Security Orchestration And Correlation (ASOC) Using ArcherySec.
Cve Search
⭐
2,151
cve-search - a tool to perform local searches for known vulnerabilities
Vulnx
⭐
1,824
vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collection (including sub-domain name, ip address, country information, organizational information and time zone, etc.) and vulnerability scanning.
Rapidscan
⭐
1,489
🆕 The Multi-Tool Web Vulnerability Scanner.
Xattacker
⭐
1,486
X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Secure Ios App Dev
⭐
1,338
Collection of the most common vulnerabilities found in iOS applications
Jackhammer
⭐
599
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Hellraiser
⭐
551
Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
Bugid
⭐
493
Detect, analyze and uniquely identify crashes in Windows applications
Vanquish
⭐
422
Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.
Securitymanageframwork
⭐
421
Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.
Hackerenv
⭐
375
Vulnrepo
⭐
364
VULNRΞPO - Free vulnerability report generator and repository end-to-end encrypted. Complete templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, methodologies and much more!
Watchdog
⭐
309
Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
Celerystalk
⭐
294
An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.
Mageni
⭐
251
Open-source vulnerability scanner
Gsa
⭐
196
Greenbone Security Assistant - The web frontend for the Greenbone Community Edition
Vulnfanatic
⭐
196
A Binary Ninja plugin for vulnerability research.
Bulwark
⭐
163
An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Portauthority
⭐
151
API that leverages Clair to scan Docker Registries and Kubernetes Clusters for vulnerabilities
Gvm Tools
⭐
150
Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance
Nerve
⭐
140
NERVE Continuous Vulnerability Scanner
Mi X
⭐
138
Determine whether your compute is truly vulnerable to a specific vulnerability by accounting for all factors which affect *actual* exploitability (runtime execution, configuration, permissions, existence of a mitigation, OS, etc..)
Wordpress Scanner
⭐
133
Wordpress Vulnerability Scanner
Offensive Payloads
⭐
127
List of payloads and wordlists that are specifically crafted to identify and exploit vulnerabilities in target web applications.
Vailyn
⭐
126
A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
Trigmap
⭐
123
A wrapper for Nmap to quickly run network scans
Intrigue Ident
⭐
110
Application and Service Fingerprinting
Jwtweak
⭐
99
Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
Teye_scanner_for_book
⭐
98
《白帽子讲Web扫描》书籍参考代码
Minions
⭐
95
Distributed filesystem scanner
Aeacus
⭐
88
🔐 Vulnerability remediation scoring system
Vulners Agent
⭐
78
Agent scanner for vulners.com
Unsafe_bank
⭐
77
Vulnerable Banking Suite
Purify
⭐
76
All-in-one tool for managing vulnerability reports from AppSec pipelines
X Marshal
⭐
75
Marshal-EASM 攻击面管理系统
Uscan
⭐
69
uscan is an automated vulnerability scanner that streamlines the process of website hacking, making it faster and more efficient than ever before.
Httprecon Nse
⭐
67
Advanced web server fingerprinting for Nmap
Websecprobe
⭐
66
Bypass 403
Libellux Up And Running
⭐
53
Libellux: Up & Running provides documentation on how-to install open-source software from source. The focus is Zero Trust Network to enhance the security for existing applications or install tools to detect and prevent threats.
Sifter
⭐
49
Sifter - All purpose penetration testing op-center
Android Pentesting Checklist
⭐
48
Delve into a comprehensive checklist, your ultimate companion for Android app penetration testing. Identify vulnerabilities in network, data, storage, and permissions effortlessly. Boost security skills with essential tools and user-friendly guides. Elevate Android security seamlessly!
Security Assessment
⭐
44
Scripts to automate some part of Security/Vulnerability Assessment
Nuclei And Subfinder Api
⭐
42
Web API for nuclei and subfinder will help you automate your entire security testing workflow since you can host it anywhere and make it accessible.
Local File Disclosure Sql Injection Lab
⭐
40
This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. If you have any doubt, ping me at https://twitter.com/IndiShell1046 :)
Xattacker
⭐
39
X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Lamma Beta
⭐
37
Vulnerability Assessment and Auditing Framework for all the Crypto Implementations.
Scout
⭐
32
Scout - a Contactless Active Reconnaissance Tool
Lava
⭐
30
Microsoft Azure Exploitation Framework
Va Pt
⭐
29
VAPT is a Vulnerability Assessment and Penetration Testing toolkit -- a small collection of some of the common testing tools specifically for the Ubuntu 20 platform.
Munch
⭐
28
Greybox fuzzer for optimizing function coverage and finding low-level vulnerabilities in C programs
Nessusbeat
⭐
26
A Beat that monitors a local Nessus reports directory and outputs scan results to Elasticsearch or Logstash.
Cveaggregate
⭐
25
Build a CVE library with aggregated CISA, EPSS and CVSS data
Awesome Vulnerability Assessment
⭐
25
An ever-growing list of resources for data-driven vulnerability assessment and prioritization
Tsuki Sploit
⭐
24
A USB-based script for Ethical hacking with multiple attacks
Erebus
⭐
23
Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.
Ninjasworkout
⭐
21
Vulnerable NodeJS Web Application
Iotvas Nmap
⭐
20
This is a NSE script that uses IoTVAS API and enables NMAP port scanner to perform connected device discovery and security risk assessment
Orgasm
⭐
18
A tool for Oragnized ASM (Attack Surface Mapper). Subdomains enumeration, IPs scans, Vulnerability assesment...
Spse
⭐
18
This is an automated tool collection written in Python for vulnerability assessment and exploitation. It also includes solution of SPSE - Securitytube Python Scripting Expert Course Problems Solution. The SecurityTube Python Scripting Expert (SPSE) is an online certification which will help you gain mastery over Python scripting and its application to problems in computer and network security. I have taken this course from SecurityTube (http://www.securitytube-training.com/online-cours
Awacs Scanner
⭐
17
Another vulnerability scanner
Securechain Java
⭐
17
TuxCare SecureChain enhances Java supply chain security through vetted libraries, vulnerability fixes, and extended support. Ideal for enterprise-level compliance and secure development.
Spf Finder
⭐
17
SPF-finder is designed to check for the validation of a Sender Policy Framework (SPF) record in a domain's DNS settings. It uses the nslookup command to query the DNS server for the SPF record, and then parses the output to determine if the record is present or not. It also have functionality for reading a list of domains.
Kalnemix
⭐
16
A powerful command-line tool for website reconnaissance and information gathering
Scythian
⭐
15
Vulnerability Assessment and Penetration Testing Toolkit
Byelog4shell
⭐
14
Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell
Acheron
⭐
14
Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.
Attacktoolkit
⭐
13
Open-source Exploiting Framework
Nuclei Plugin
⭐
13
Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.
Awesome Security Resources
⭐
12
Vulnerability Assessment and Penetration Testing Tools (Information Security / Cyber security)
Actions Log4j
⭐
11
A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
References
⭐
10
Collection of reusable references
Thexframework
⭐
10
Network/WebApplication Information Gathering, Enumeration and Vulnerability Scanning (Under Development)
Cvrf Csaf Converter
⭐
10
A CVRF CSAF Converter, taking care about OASIS specification.
Avmp
⭐
9
A collection of tools for managing and automating vulnerability management.
Khata
⭐
9
WebHook for Red Team
Deepcva
⭐
9
Reproduction package of the paper "DeepCVA: Automated Commit-level Vulnerability Assessment with Deep Multi-task Learning" in Automated Software Engineering (ASE) 2021
Httprecon Win32
⭐
9
Advanced web server fingerprinting
Function Level Vulnerability Assessment
⭐
9
Reproduction package of the paper "On the Use of Fine-grained Vulnerable Code Statements for Software Vulnerability Assessment Models" in Mining Software Repositories (MSR) 2022
Appsec Notes
⭐
9
My Application Security Notes - web, mobile, thick client, API, and more.
Random Serial Generator
⭐
8
Generates Random Serials
Image Layer Provenance
⭐
8
Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.
Windows Fingerprint Powershell
⭐
8
This script is used as a supplement to vulnerability assessment tools such as Nessus, Retina, and various other scanners that are used in the industry. The script collects data specfic to the network, firewall configuration (host based), audit logs (security, system, application) and other information that can be useful in determining false positives during a vulnerability assessment. I created to tool to negate having to take numerous screen shots or going to different places to pull data ma
Vulnerability Management Resources
⭐
8
A collection of resources related to vulnerability management.
Cvedetect
⭐
7
Yet another Vulnerability Assessment Tool for efficient CVE detection.
Netzapper
⭐
7
Net Zapper is a vulnerability assessment and password cracking tool written in python
Senluo
⭐
7
Super fast and lightweight senluo cyberspace search engine. 轻量级、高性能的森罗网络空间测绘引擎。
Splunk Vulners
⭐
7
Splunk Vulnerability Assessment Plugin
Carbontoolkit
⭐
7
Automated tool for information gathering and vulnerability assessment
Vise
⭐
7
A search engine on information delivered by OSINT sources to support Vulnerability Assessment
Auditr
⭐
6
A utility for auditing C code for vulnerabilities.
Osdiscover
⭐
6
Web interface for Vulnerability Assessment and Scanning
1-100 of 108 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.