Trending repositories for topic vulnerability-scanner

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Automatic SQL injection and database takeover tool

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Automated All-in-One OS Command Injection Exploitation Tool.

wacat - Challenge Your Web App with AI-Driven Cat Chaos!

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

cwe_checker finds vulnerable patterns in binary executables

A fast tool to scan CRLF vulnerability written in Go

EMBA - The firmware security analyzer

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

BinAbsInspector: Vulnerability Scanner for Binaries

:new: The Multi-Tool Web Vulnerability Scanner.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Toolkit to emulate firmware and analyse it for security vulnerabilities

CORS Misconfiguration Scanner

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

wacat - Challenge Your Web App with AI-Driven Cat Chaos!

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

cwe_checker finds vulnerable patterns in binary executables

A fast tool to scan CRLF vulnerability written in Go

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

BinAbsInspector: Vulnerability Scanner for Binaries

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

:new: The Multi-Tool Web Vulnerability Scanner.

EMBA - The firmware security analyzer

Automated All-in-One OS Command Injection Exploitation Tool.

Automatic SQL injection and database takeover tool

Toolkit to emulate firmware and analyse it for security vulnerabilities

CORS Misconfiguration Scanner

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

Automatic SQL injection and database takeover tool

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

A Security Tool for Bug Bounty, Pentest and Red Teaming.

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Automated All-in-One OS Command Injection Exploitation Tool.

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

EMBA - The firmware security analyzer

cwe_checker finds vulnerable patterns in binary executables

:new: The Multi-Tool Web Vulnerability Scanner.

Toolkit to emulate firmware and analyse it for security vulnerabilities

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

wacat - Challenge Your Web App with AI-Driven Cat Chaos!

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

A fast tool to scan CRLF vulnerability written in Go

File upload vulnerability scanner and exploitation tool.

CMS auto detect and exploit.

Hexrays Toolbox - Find code patterns within the Hexrays ctree

wacat - Challenge Your Web App with AI-Driven Cat Chaos!

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

CMS auto detect and exploit.

cwe_checker finds vulnerable patterns in binary executables

Hexrays Toolbox - Find code patterns within the Hexrays ctree

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

Toolkit to emulate firmware and analyse it for security vulnerabilities

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

:new: The Multi-Tool Web Vulnerability Scanner.

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

EMBA - The firmware security analyzer

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

A fast tool to scan CRLF vulnerability written in Go

Automatic SQL injection and database takeover tool

Automated All-in-One OS Command Injection Exploitation Tool.

A modular vulnerability scanner with automatic report generation capabilities.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

Automatic SQL injection and database takeover tool

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

A Security Tool for Bug Bounty, Pentest and Red Teaming.

EMBA - The firmware security analyzer

Automated All-in-One OS Command Injection Exploitation Tool.

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

Toolkit to emulate firmware and analyse it for security vulnerabilities

CORS Misconfiguration Scanner

:new: The Multi-Tool Web Vulnerability Scanner.

cwe_checker finds vulnerable patterns in binary executables

File upload vulnerability scanner and exploitation tool.

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

A powerful browser crawler for web vulnerability scanners

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through...

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

Simple Authenticated Vulnerability Scanner for Linux hosts and Docker images

wacat - Challenge Your Web App with AI-Driven Cat Chaos!

CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

Honeyscanner: A vulnerability analyzer for honeypots

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Cracked Nessus in Docker 🐳

EMBA - The firmware security analyzer

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

Wordfence malware and vulnerability scanner command line utility.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

A modular vulnerability scanner with automatic report generation capabilities.

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

🧹 Cleaning up images from Kubernetes nodes

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Toolkit to emulate firmware and analyse it for security vulnerabilities

cwe_checker finds vulnerable patterns in binary executables

CORS Misconfiguration Scanner

OWASP Zed Attack Proxy project landing page.

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".

Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单的启动参数 | 包含多种反连可用 | 可执行文件体积仅 2 MB

sdlc 是一个基于 Go 语言构建的安全漏洞示范平台，旨在促进 DevSecOps 和安全开发生命周期 (SDLC) 实践。它通过模拟常见漏洞来增强开发人员的安全意识，除了可以用于devsecops以外，还可以用于安全行业从事者学习漏洞知识或者渗透知识，代码审计，提供了一个实践和学习的环境。本项目采用了前后端分离的设计模式，其中后端利用了轻量级框架 Gin，而前端则使用了 Vue 3。

CVS is a powerful comprehensive attack surface management platform. 森罗万象-强大的网络空间测绘、资产管理、漏洞扫描等全生命漏洞周期的综合攻击面管理平台，化繁为简，以一御百。

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

Automatic SQL injection and database takeover tool

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

EMBA - The firmware security analyzer

Automated All-in-One OS Command Injection Exploitation Tool.

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

File upload vulnerability scanner and exploitation tool.

A modular vulnerability scanner with automatic report generation capabilities.

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

:new: The Multi-Tool Web Vulnerability Scanner.

A powerful browser crawler for web vulnerability scanners

🧹 Cleaning up images from Kubernetes nodes

A fast tool to scan CRLF vulnerability written in Go

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".

sdlc 是一个基于 Go 语言构建的安全漏洞示范平台，旨在促进 DevSecOps 和安全开发生命周期 (SDLC) 实践。它通过模拟常见漏洞来增强开发人员的安全意识，除了可以用于devsecops以外，还可以用于安全行业从事者学习漏洞知识或者渗透知识，代码审计，提供了一个实践和学习的环境。本项目采用了前后端分离的设计模式，其中后端利用了轻量级框架 Gin，而前端则使用了 Vue 3。

Honeyscanner: A vulnerability analyzer for honeypots

A modular vulnerability scanner with automatic report generation capabilities.

Cracked Nessus in Docker 🐳

Wordfence malware and vulnerability scanner command line utility.

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

🧹 Cleaning up images from Kubernetes nodes

A tool for Oragnized ASM (Attack Surface Mapper). Subdomains enumeration, IPs scans, Vulnerability assesment...

承影 - 一款安全工具箱,集成了目录扫描、JWT、Swagger 测试、编/解码、轻量级 BurpSuite、杀软辅助功能

Moodle community-based vulnerability scanner

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Open-source vulnerability scanner

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Simple Authenticated Vulnerability Scanner for Linux hosts and Docker images

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the int...

A typical search engine dork scanner scrapes search engines with dorks that you provide in order to find vulnerable URLs.