Trending repositories for topic vulnerability-scanner

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

Automatic SQL injection and database takeover tool

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Automated All-in-One OS Command Injection Exploitation Tool.

A flexible internet crawler used for scanning technologies, instances and vulnerabilities worldwide across the internet.

A modular vulnerability scanner with automatic report generation capabilities.

EMBA - The firmware security analyzer

CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

Open-source vulnerability scanner

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".

A flexible internet crawler used for scanning technologies, instances and vulnerabilities worldwide across the internet.

CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

A modular vulnerability scanner with automatic report generation capabilities.

Open-source vulnerability scanner

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".

Automatic SQL injection and database takeover tool

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

EMBA - The firmware security analyzer

Automated All-in-One OS Command Injection Exploitation Tool.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

Automatic SQL injection and database takeover tool

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Automated All-in-One OS Command Injection Exploitation Tool.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

A modular vulnerability scanner with automatic report generation capabilities.

EMBA - The firmware security analyzer

CORS Misconfiguration Scanner

cwe_checker finds vulnerable patterns in binary executables

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

A flexible internet crawler used for scanning technologies, instances and vulnerabilities worldwide across the internet.

CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

CMS auto detect and exploit.

🧹 Cleaning up images from Kubernetes nodes

This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".

A fast tool to scan CRLF vulnerability written in Go

A Security Tool for Bug Bounty, Pentest and Red Teaming.

A flexible internet crawler used for scanning technologies, instances and vulnerabilities worldwide across the internet.

Sharing software supply chain security open source projects

CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

A modular vulnerability scanner with automatic report generation capabilities.

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Wordfence malware and vulnerability scanner command line utility.

CMS auto detect and exploit.

🧹 Cleaning up images from Kubernetes nodes

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

CORS Misconfiguration Scanner

cwe_checker finds vulnerable patterns in binary executables

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Automatic SQL injection and database takeover tool

This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

Automated All-in-One OS Command Injection Exploitation Tool.

EMBA - The firmware security analyzer

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

A fast tool to scan CRLF vulnerability written in Go

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

Automatic SQL injection and database takeover tool

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Automated All-in-One OS Command Injection Exploitation Tool.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

A Security Tool for Bug Bounty, Pentest and Red Teaming.

EMBA - The firmware security analyzer

A flexible internet crawler used for scanning technologies, instances and vulnerabilities worldwide across the internet.

File upload vulnerability scanner and exploitation tool.

cwe_checker finds vulnerable patterns in binary executables

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

A powerful browser crawler for web vulnerability scanners

CORS Misconfiguration Scanner

A modular vulnerability scanner with automatic report generation capabilities.

A fast tool to scan CRLF vulnerability written in Go

Toolkit to emulate firmware and analyse it for security vulnerabilities

A high performance offensive security tool for reconnaissance and vulnerability scanning

A flexible internet crawler used for scanning technologies, instances and vulnerabilities worldwide across the internet.

CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

Enhanced BurpGPT 是一个强大的 Burp Suite 插件。通过分析指定的 HTTP 请求和响应，帮助安全测试人员更快速地发现潜在的安全漏洞。

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Cracked Nessus in Docker 🐳

Honeyscanner: A vulnerability analyzer for honeypots

Wordfence malware and vulnerability scanner command line utility.

OWASP Zed Attack Proxy project landing page.

Moodle community-based vulnerability scanner

Sharing software supply chain security open source projects

wacat - Challenge Your Web App with Cat Chaos and AI-Driven Testing!

OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

CMS auto detect and exploit.

A modular vulnerability scanner with automatic report generation capabilities.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单的启动参数 | 包含多种反连可用 | 可执行文件体积仅 2 MB

EMBA - The firmware security analyzer

Automated All-in-One OS Command Injection Exploitation Tool.

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单的启动参数 | 包含多种反连可用 | 可执行文件体积仅 2 MB

sdlc 是一个基于 Go 语言构建的安全漏洞示范平台，旨在促进 DevSecOps 和安全开发生命周期 (SDLC) 实践。它通过模拟常见漏洞来增强开发人员的安全意识，除了可以用于devsecops以外，还可以用于安全行业从事者学习漏洞知识或者渗透知识，代码审计，提供了一个实践和学习的环境。本项目采用了前后端分离的设计模式，其中后端利用了轻量级框架 Gin，而前端则使用了 Vue 3。

Enhanced BurpGPT 是一个强大的 Burp Suite 插件。通过分析指定的 HTTP 请求和响应，帮助安全测试人员更快速地发现潜在的安全漏洞。

A flexible internet crawler used for scanning technologies, instances and vulnerabilities worldwide across the internet.

A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network configurations across your infrastructure.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

Automatic SQL injection and database takeover tool

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Automated All-in-One OS Command Injection Exploitation Tool.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

EMBA - The firmware security analyzer

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

File upload vulnerability scanner and exploitation tool.

A modular vulnerability scanner with automatic report generation capabilities.

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

:new: The Multi-Tool Web Vulnerability Scanner.

A fast tool to scan CRLF vulnerability written in Go

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

CORS Misconfiguration Scanner

A high performance offensive security tool for reconnaissance and vulnerability scanning

A powerful browser crawler for web vulnerability scanners

cwe_checker finds vulnerable patterns in binary executables

sdlc 是一个基于 Go 语言构建的安全漏洞示范平台，旨在促进 DevSecOps 和安全开发生命周期 (SDLC) 实践。它通过模拟常见漏洞来增强开发人员的安全意识，除了可以用于devsecops以外，还可以用于安全行业从事者学习漏洞知识或者渗透知识，代码审计，提供了一个实践和学习的环境。本项目采用了前后端分离的设计模式，其中后端利用了轻量级框架 Gin，而前端则使用了 Vue 3。

A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network configurations across your infrastructure.

Enhanced BurpGPT 是一个强大的 Burp Suite 插件。通过分析指定的 HTTP 请求和响应，帮助安全测试人员更快速地发现潜在的安全漏洞。

CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

Honeyscanner: A vulnerability analyzer for honeypots

wacat - Challenge Your Web App with Cat Chaos and AI-Driven Testing!

Moodle community-based vulnerability scanner

Cracked Nessus in Docker 🐳

Simple Authenticated Vulnerability Scanner for Linux hosts and Docker images

Installation script for Codename SCNR.

A modular vulnerability scanner with automatic report generation capabilities.

A tool for Oragnized ASM (Attack Surface Mapper). Subdomains enumeration, IPs scans, Vulnerability assesment...

Wordfence malware and vulnerability scanner command line utility.

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Open-source vulnerability scanner

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

OWASP Zed Attack Proxy project landing page.

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Sharing software supply chain security open source projects