vulnerabilities
There are 833 repositories under vulnerabilities topic.
future-architect/vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
google/oss-fuzz
OSS-Fuzz - continuous fuzzing for open source software.
quay/clair
Vulnerability Static Analysis for Containers
anchore/grype
A vulnerability scanner for container images and filesystems
edoardottt/awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
presidentbeef/brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
trickest/cve
Gather and update all available and newest CVEs with their PoC.
six2dez/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
infoslack/awesome-web-hacking
A list of web application security
google/clusterfuzz
Scalable fuzzing infrastructure.
snyk/cli
Snyk CLI scans and monitors your projects for security vulnerabilities.
aquasecurity/kube-hunter
Hunt for security weaknesses in Kubernetes clusters
cdk-team/CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
RetireJS/retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
Medicean/VulApps
快速搭建各种漏洞环境(Various vulnerability environment)
zhzyker/vulmap
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
antonio-morales/Fuzzing101
An step by step fuzzing tutorial. A GitHub Security Lab initiative
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
lirantal/awesome-nodejs-security
Awesome Node.js Security resources
hacksysteam/HackSysExtremeVulnerableDriver
HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
pwndoc/pwndoc
Pentest Report Generator
cve-search/cve-search
cve-search - a tool to perform local searches for known vulnerabilities
archerysec/archerysec
ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
Bearer/bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
jaeles-project/jaeles
The Swiss Army knife for automated Web Application Testing
crytic/not-so-smart-contracts
Examples of Solidity security issues
FriendsOfPHP/security-advisories
A database of PHP security advisories
lirantal/is-website-vulnerable
finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
opencve/opencve
CVE Alerting Platform
OWASP/NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
skavngr/rapidscan
:new: The Multi-Tool Web Vulnerability Scanner.
harsh-bothra/learn365
This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.
metlo-labs/metlo
Metlo is an open-source API security platform.
anchore/anchore-engine
A service that analyzes docker images and scans for vulnerabilities
0xmaximus/Galaxy-Bugbounty-Checklist
Tips and Tutorials for Bug Bounty and also Penetration Tests.
openclarity/openclarity
OpenClarity is an open source tool built to enhance security and observability of cloud native applications and infrastructure