vulnerabilities
There are 940 repositories under vulnerabilities topic.
future-architect/vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
google/oss-fuzz
OSS-Fuzz - continuous fuzzing for open source software.
anchore/grype
A vulnerability scanner for container images and filesystems
quay/clair
Vulnerability Static Analysis for Containers
edoardottt/awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
trickest/cve
Gather and update all available and newest CVEs with their PoC.
presidentbeef/brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
six2dez/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
infoslack/awesome-web-hacking
A list of web application security
google/clusterfuzz
Scalable fuzzing infrastructure.
snyk/cli
Snyk CLI scans and monitors your projects for security vulnerabilities.
aquasecurity/kube-hunter
Hunt for security weaknesses in Kubernetes clusters
cdk-team/CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
RetireJS/retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
Medicean/VulApps
快速搭建各种漏洞环境(Various vulnerability environment)
antonio-morales/Fuzzing101
An step by step fuzzing tutorial. A GitHub Security Lab initiative
zhzyker/vulmap
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
lirantal/awesome-nodejs-security
Awesome Node.js Security resources
hacksysteam/HackSysExtremeVulnerableDriver
HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
pwndoc/pwndoc
Pentest Report Generator
cve-search/cve-search
cve-search - a tool to perform local searches for known vulnerabilities
Bearer/bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
archerysec/archerysec
ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
opencve/opencve
Vulnerability Intelligence Platform
jaeles-project/jaeles
The Swiss Army knife for automated Web Application Testing
crytic/not-so-smart-contracts
Examples of Solidity security issues
FriendsOfPHP/security-advisories
A database of PHP security advisories
lirantal/is-website-vulnerable
finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
OWASP/NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
skavngr/rapidscan
:new: The Multi-Tool Web Vulnerability Scanner.
metlo-labs/metlo
Metlo is an open-source API security platform.
harsh-bothra/learn365
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
0xmaximus/Galaxy-Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
anchore/anchore-engine
A service that analyzes docker images and scans for vulnerabilities
intel/cve-bin-tool
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.