vulnerability-detection | Topic | Ecosyste.ms: Repos

Topic: "vulnerability-detection"

aquasecurity/trivy

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Language: Go - Size: 880 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 29,601 - Forks: 2,800

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

Language: Go - Size: 39.6 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 25,250 - Forks: 2,927

CISOfy/lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Language: Shell - Size: 8.43 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 14,748 - Forks: 1,551

wazuh/wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Language: C - Size: 453 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 13,781 - Forks: 2,017

future-architect/vuls

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Language: Go - Size: 29.6 MB - Last synced at: 7 days ago - Pushed at: 8 days ago - Stars: 11,773 - Forks: 1,204

projectdiscovery/nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Language: JavaScript - Size: 319 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 11,099 - Forks: 3,106

kubescape/kubescape

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

Language: Go - Size: 111 MB - Last synced at: 3 days ago - Pushed at: 11 days ago - Stars: 11,035 - Forks: 885

dependency-check/DependencyCheck

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Language: Java - Size: 289 MB - Last synced at: 7 days ago - Pushed at: 9 days ago - Stars: 7,265 - Forks: 1,380

GhostTroops/scan4all

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

Language: Go - Size: 82.7 MB - Last synced at: 6 days ago - Pushed at: over 1 year ago - Stars: 5,890 - Forks: 705

deepfence/ThreatMapper

Open Source Cloud Native Application Protection Platform (CNAPP)

Language: TypeScript - Size: 215 MB - Last synced at: about 2 months ago - Pushed at: 3 months ago - Stars: 5,137 - Forks: 626

greenbone/openvas-scanner

This repository contains the scanner component for Greenbone Community Edition.

Language: Rust - Size: 36.6 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 4,128 - Forks: 721

Arachni/arachni

Web Application Security Scanner Framework

Language: Ruby - Size: 33.8 MB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 3,902 - Forks: 773

scipag/vulscan

Advanced vulnerability scanning with Nmap NSE

Language: Lua - Size: 13.4 MB - Last synced at: 5 months ago - Pushed at: about 1 year ago - Stars: 3,615 - Forks: 684

ysrc/xunfeng

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Language: Python - Size: 33.6 MB - Last synced at: 5 months ago - Pushed at: over 1 year ago - Stars: 3,577 - Forks: 1,328

DependencyTrack/dependency-track

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Language: Java - Size: 107 MB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 3,328 - Forks: 683

cve-search/cve-search

cve-search - a tool to perform local searches for known vulnerabilities

Language: Python - Size: 15.5 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 2,523 - Forks: 612

Checkmarx/kics

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Language: Open Policy Agent - Size: 911 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 2,497 - Forks: 349

protectai/vulnhuntr

Zero shot vulnerability discovery using LLMs

Language: Python - Size: 119 KB - Last synced at: 18 days ago - Pushed at: 9 months ago - Stars: 2,343 - Forks: 266

anouarbensaad/vulnx

vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collection (including sub-domain name, ip address, country information, organizational information and time zone, etc.) and vulnerability scanning.

Language: Python - Size: 575 KB - Last synced at: 7 days ago - Pushed at: over 2 years ago - Stars: 1,989 - Forks: 349

pyupio/safety

Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.

Language: Python - Size: 3.33 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 1,913 - Forks: 168

skavngr/rapidscan

:new: The Multi-Tool Web Vulnerability Scanner.

Language: Python - Size: 3.27 MB - Last synced at: 5 months ago - Pushed at: about 2 years ago - Stars: 1,861 - Forks: 418

0xInfection/TIDoS-Framework

The Offensive Manual Web Application Penetration Testing Framework.

Language: Python - Size: 22.7 MB - Last synced at: 12 days ago - Pushed at: over 2 years ago - Stars: 1,842 - Forks: 393

lutfumertceylan/top25-parameter

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Size: 355 KB - Last synced at: 3 days ago - Pushed at: over 1 year ago - Stars: 1,799 - Forks: 282

murphysecurity/murphysec

An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全，具备专业的软件成分分析（SCA）、漏洞检测、专业漏洞库。

Language: Go - Size: 5.1 MB - Last synced at: about 18 hours ago - Pushed at: about 20 hours ago - Stars: 1,742 - Forks: 180

metlo-labs/metlo

Metlo is an open-source API security platform.

Language: TypeScript - Size: 8.85 MB - Last synced at: 25 days ago - Pushed at: 3 months ago - Stars: 1,728 - Forks: 100

wagiro/BurpBounty

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Language: Java - Size: 3.36 MB - Last synced at: 7 months ago - Pushed at: over 1 year ago - Stars: 1,715 - Forks: 342

wireghoul/graudit

grep rough audit - source code auditing tool

Language: Shell - Size: 478 KB - Last synced at: 4 days ago - Pushed at: 5 months ago - Stars: 1,657 - Forks: 252

aquasecurity/trivy-operator

Kubernetes-native security toolkit

Language: Go - Size: 42.4 MB - Last synced at: 15 days ago - Pushed at: 16 days ago - Stars: 1,655 - Forks: 252

Moham3dRiahi/XAttacker

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Language: Perl - Size: 209 KB - Last synced at: 8 months ago - Pushed at: about 2 years ago - Stars: 1,602 - Forks: 471

0xricksanchez/paper_collection

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

Language: Python - Size: 331 KB - Last synced at: 5 months ago - Pushed at: 8 months ago - Stars: 1,310 - Forks: 128

Lucifer1993/SatanSword

红队综合渗透框架

Language: Python - Size: 84.6 MB - Last synced at: 4 months ago - Pushed at: over 2 years ago - Stars: 1,178 - Forks: 208

bitquark/shortscan

An IIS short filename enumeration tool

Language: Go - Size: 3.7 MB - Last synced at: about 1 month ago - Pushed at: 11 months ago - Stars: 1,007 - Forks: 105

mikeroyal/Open-Source-Security-Guide

Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

Language: Go - Size: 655 KB - Last synced at: 5 months ago - Pushed at: almost 2 years ago - Stars: 965 - Forks: 86

CERT-Polska/Artemis

A modular vulnerability scanner with automatic report generation capabilities.

Language: Python - Size: 7.82 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 964 - Forks: 83

wazuh/wazuh-docker

Wazuh - Docker containers

Language: Shell - Size: 5.62 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 944 - Forks: 499

toolswatch/vFeed 📦

The Correlated CVE Vulnerability And Threat Intelligence Database API

Language: Python - Size: 542 KB - Last synced at: 7 months ago - Pushed at: over 4 years ago - Stars: 941 - Forks: 243

seccubus/seccubus

Easy automated vulnerability scanning, reporting and analysis

Language: JavaScript - Size: 123 MB - Last synced at: 8 months ago - Pushed at: almost 6 years ago - Stars: 702 - Forks: 159

bahaabdelwahed/killshot

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

Language: Ruby - Size: 42 KB - Last synced at: 7 months ago - Pushed at: about 2 years ago - Stars: 697 - Forks: 152

Patrowl/PatrowlManager

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Language: HTML - Size: 2.61 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 638 - Forks: 113

aboutcode-org/vulnerablecode

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Language: Python - Size: 28.7 MB - Last synced at: 12 days ago - Pushed at: 13 days ago - Stars: 635 - Forks: 237

yhy0/Jie

Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite of features encompasses vulnerability scanning, information gathering, and exploitation, elevating it to an indispensable toolkit for both security professionals and penetration testers. 挖洞辅助工具(漏洞扫描、信息收集)

Language: Go - Size: 5.76 MB - Last synced at: about 2 months ago - Pushed at: over 1 year ago - Stars: 591 - Forks: 120

mikeroyal/eBPF-Guide

eBPF (extended Berkeley Packet Filter) Guide. Learn all about the eBPF Tools and Libraries for Security, Monitoring , and Networking.

Language: Go - Size: 181 KB - Last synced at: 5 months ago - Pushed at: almost 2 years ago - Stars: 584 - Forks: 55

m0nad/HellRaiser

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Language: Ruby - Size: 435 KB - Last synced at: 5 months ago - Pushed at: over 2 years ago - Stars: 562 - Forks: 143

SkyLined/BugId

Detect, analyze and uniquely identify crashes in Windows applications

Language: Python - Size: 4.71 MB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 505 - Forks: 89

wazuh/wazuh-dashboard-plugins

Plugins for Wazuh Dashboard

Language: TypeScript - Size: 63.9 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 487 - Forks: 221

wazuh/wazuh-ruleset

Wazuh - Ruleset

Language: Python - Size: 33.1 MB - Last synced at: 7 days ago - Pushed at: about 1 year ago - Stars: 485 - Forks: 226

WuliRuler/AutorizePro

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it significantly reduces the false positive rate and improves the efficiency of vulnerability detection.

Language: Python - Size: 9.24 MB - Last synced at: 38 minutes ago - Pushed at: 3 months ago - Stars: 468 - Forks: 33

PaytmLabs/nerve

NERVE Continuous Vulnerability Scanner

Language: Python - Size: 10.8 MB - Last synced at: 7 months ago - Pushed at: almost 2 years ago - Stars: 458 - Forks: 116

we1h0/SecurityManageFramwork

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Language: Python - Size: 11.6 MB - Last synced at: 26 days ago - Pushed at: almost 4 years ago - Stars: 430 - Forks: 153

mageni/mageni

Open-source vulnerability scanner

Language: NASL - Size: 119 MB - Last synced at: 7 months ago - Pushed at: 12 months ago - Stars: 418 - Forks: 47

edoardottt/missing-cve-nuclei-templates

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

Language: Shell - Size: 22 MB - Last synced at: 12 days ago - Pushed at: 13 days ago - Stars: 412 - Forks: 49

gradejs/gradejs 📦

GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.

Language: TypeScript - Size: 2.93 MB - Last synced at: 7 months ago - Pushed at: almost 3 years ago - Stars: 412 - Forks: 11

cs-au-dk/jelly

JavaScript/TypeScript static analyzer for call graph construction, library usage pattern matching, and vulnerability exposure analysis

Language: TypeScript - Size: 1.47 MB - Last synced at: 13 days ago - Pushed at: 13 days ago - Stars: 403 - Forks: 33

ucsb-seclab/BootStomp

BootStomp: a bootloader vulnerability finder

Language: Python - Size: 3.58 MB - Last synced at: 7 months ago - Pushed at: almost 4 years ago - Stars: 396 - Forks: 67

saucer-man/saucerframe

python3批量poc检测工具

Language: Python - Size: 914 KB - Last synced at: 4 months ago - Pushed at: almost 2 years ago - Stars: 389 - Forks: 101

ucsb-seclab/difuze

Fuzzer for Linux Kernel Drivers

Language: C++ - Size: 2.53 MB - Last synced at: 7 months ago - Pushed at: over 3 years ago - Stars: 377 - Forks: 84

wazuh/wazuh-ansible

Wazuh - Ansible playbook

Language: Jinja - Size: 7.19 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 373 - Forks: 226

vulnersCom/api

Vulners Python API wrapper

Language: Python - Size: 240 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 366 - Forks: 60

Escape-Technologies/graphql-wordlist

The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.

Language: TypeScript - Size: 38.7 MB - Last synced at: 6 months ago - Pushed at: about 2 years ago - Stars: 363 - Forks: 39

MindPointGroup/cloudfrunt

A tool for identifying misconfigured CloudFront domains

Language: Python - Size: 48.8 KB - Last synced at: 6 months ago - Pushed at: over 5 years ago - Stars: 354 - Forks: 69

ucsb-seclab/dr_checker

DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers

Language: C++ - Size: 1000 KB - Last synced at: over 1 year ago - Pushed at: over 3 years ago - Stars: 331 - Forks: 71

ameenmaali/qsfuzz

qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.

Language: Go - Size: 82 KB - Last synced at: 7 months ago - Pushed at: over 2 years ago - Stars: 300 - Forks: 37

OSTEsayed/OSTE-Meta-Scan

The OSTE meta scanner is a comprehensive web vulnerability scanner that combines multiple DAST scanners, including Nikto Scanner, ZAP, Nuclei, SkipFish, and Wapiti.

Language: Python - Size: 4.55 MB - Last synced at: 2 months ago - Pushed at: 9 months ago - Stars: 298 - Forks: 39

rm-hull/nvd-clojure

National Vulnerability Database dependency checker for Clojure projects

Language: Clojure - Size: 458 MB - Last synced at: 18 days ago - Pushed at: 18 days ago - Stars: 283 - Forks: 40

Ky0toFu/Mirror-Flowers

Mirror Flowers 是一个开箱即用的代码安全审计工具，集成本地静态扫描（行级污点追踪 + AST）与 AI 验证，帮助你快速发现并定位高风险问题，并给出修复建议。

Language: Python - Size: 2.39 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 268 - Forks: 48

vmfunc/sif

the blazing-fast pentesting suite.

Language: Go - Size: 1.91 MB - Last synced at: 7 days ago - Pushed at: 7 months ago - Stars: 263 - Forks: 14

dragonked2/Egyscan

Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions that make Egyscan an indispensable tool in your security arsenal:

Language: Python - Size: 214 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 262 - Forks: 48