vulnerabilities
There are 748 repositories under vulnerabilities topic.
future-architect/vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
quay/clair
Vulnerability Static Analysis for Containers
google/oss-fuzz
OSS-Fuzz - continuous fuzzing for open source software.
anchore/grype
A vulnerability scanner for container images and filesystems
presidentbeef/brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
edoardottt/awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
trickest/cve
Gather and update all available and newest CVEs with their PoC.
infoslack/awesome-web-hacking
A list of web application security
six2dez/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
google/clusterfuzz
Scalable fuzzing infrastructure.
snyk/cli
Snyk CLI scans and monitors your projects for security vulnerabilities.
aquasecurity/kube-hunter
Hunt for security weaknesses in Kubernetes clusters
cdk-team/CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
Medicean/VulApps
快速搭建各种漏洞环境(Various vulnerability environment)
RetireJS/retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
zhzyker/vulmap
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
lirantal/awesome-nodejs-security
Awesome Node.js Security resources
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
hacksysteam/HackSysExtremeVulnerableDriver
HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
antonio-morales/Fuzzing101
An step by step fuzzing tutorial. A GitHub Security Lab initiative
cve-search/cve-search
cve-search - a tool to perform local searches for known vulnerabilities
archerysec/archerysec
ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
crytic/not-so-smart-contracts
Examples of Solidity security issues
jaeles-project/jaeles
The Swiss Army knife for automated Web Application Testing
pwndoc/pwndoc
Pentest Report Generator
FriendsOfPHP/security-advisories
A database of PHP security advisories
lirantal/is-website-vulnerable
finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
OWASP/NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
Bearer/bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
skavngr/rapidscan
:new: The Multi-Tool Web Vulnerability Scanner.
opencve/opencve
CVE Alerting Platform
metlo-labs/metlo
Metlo is an open-source API security platform.
anchore/anchore-engine
A service that analyzes docker images and scans for vulnerabilities
harsh-bothra/learn365
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
0xmaximus/Galaxy-Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
openclarity/kubeclarity
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulnerabilities of container images and filesystems