Pinned Repositories
beef
The Browser Exploitation Framework Project
hyperfox
A security tool for proxying and recording HTTP and HTTPs traffic.
jok3r
Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework
Kvasir
Kvasir: Penetration Test Data Management
mandingo
Automatically exported from code.google.com/p/mandingo
Maryam
Maryam: Open-source Intelligence(OSINT) Framework
PhEmail
PhEmail is a python open source phishing email tool that automates the process of sending phishing emails as part of a social engineering test
Sitadel
Web Application Security Scanner
Smart-Contract-Security-Audits
Certified Smart Contract Audits (Ethereum, Hyperledger, xDAI, Huobi ECO Chain, Binance Smart Chain, Fantom, EOS, Tezos) by Chainsulting
snort3
Snort++
securityigi's Repositories
securityigi/rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
securityigi/awesome-web-hacking
A list of web application security
securityigi/boulder
An ACME-based certificate authority, written in Go.
securityigi/crimson
Web Application Security Testing automation.
securityigi/crowdsec
CrowdSec - the open-source and participative IPS able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global CTI database to protect the user network.
securityigi/cwv-scanner
This is a simple web application vulnerability scanner that checks if a given URL or IP address is vulnerable to 37 common web application security vulnerabilities. The tool is designed to help website owners and security researchers identify vulnerabilities in their web applications that can be exploited by attackers.
securityigi/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
securityigi/Egyscan
Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions that make Egyscan an indispensable tool in your security arsenal:
securityigi/grype
A vulnerability scanner for container images and filesystems
securityigi/harbor
An open source trusted cloud native registry project that stores, signs, and scans content.
securityigi/jaeles
The Swiss Army knife for automated Web Application Testing
securityigi/kubeclarity
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems
securityigi/kubescape
Kubescape is a K8s open-source tool providing a multi-cloud K8s single pane of glass, including risk analysis, security compliance, RBAC visualizer and image vulnerabilities scanning.
securityigi/MixewayHub
Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.
securityigi/mutillidae
OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. Mutillidae can be installed on Linux and Windows using LAMP, WAMP, and XAMMP. It is pre-installed on SamuraiWTF and OWASP BWA. The existing version can be updated on these platforms. With dozens of vulnerabilities and hints to help the user; this is an easy-to-use web hacking environment designed for labs, security enthusiast, classrooms, CTF, and vulnerability assessment tool targets. Mutillidae has been used in graduate security courses, corporate web sec training courses, and as an "assess the assessor" target for vulnerability assessment software. A containerized version of the application is available as a companion project.
securityigi/openvas-scanner
This repository contains the scanner component for Greenbone Community Edition.
securityigi/osv.dev
Open source vulnerability DB and triage service.
securityigi/pickaxe-security-scanner
Pickaxe is a fast and customizable security scan library which simplifies security testing for web applications like Adobe Experience Manager or API services. It can be plugged into a maven build to execute build-in checks or custom user provided security checks. Custom security checks can be defined via YAML files or a groovy based DSL.
securityigi/pocsuite3
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
securityigi/salus
Security scanner coordinator
securityigi/Scanner-and-Patcher
A Web Vulnerability Scanner and Patcher
securityigi/TechViper
TechViper is an advanced web security scanner designed to detect various vulnerabilities in web applications.
securityigi/trivy
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues and hard-coded secrets
securityigi/vulnerability-scanner-for-npm
This project is developed as part of my Master's thesis named: "Web Application Security Testing using OWASP Framework". This is a Node.js Vulnerability Checker CLI tool written in TypeScript and used to identify security vulnerabilities in a Node.JS project by querying the GitHub Advisory database - similar to npm audit
securityigi/VulnerableApp
OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
securityigi/w4af
w4af: web advanced application attack and audit framework, the open source web vulnerability scanner.
securityigi/wapiti
Web vulnerability scanner written in Python3
securityigi/wazuh
Wazuh - The Open Source Security Platform
securityigi/WebVulnerabilityScanner
Web Application Security Scanner Framework
securityigi/XSS-Scanner
Following OWASP TOP 10 (the top ten most critical web application security risk) I decided to build an XSS Scanner.