vulnerability-analysis

There are 6 repositories under vulnerability-analysis topic.

• 0xInfection / TIDoS-Framework

  The Offensive Manual Web Application Penetration Testing Framework.

  enumerationexploitationfootprintingintelligence-gatheringosintreconnaissancescanning-enumerationtidos-frameworkvulnerability-analysisvulnerability-detectionweb-application-securityweb-fuzzerweb-penetration-testing
  Language:Python 1842

• zema1 / watchvuln

  一个高价值漏洞采集与推送服务 | Collect valueable vulnerabilities and push them to various services

  dingding-botlark-botvulnerabilityvulnerability-analysiswecom-bot
  Language:Go 1704

• cn-panda / JavaCodeAudit

  Getting started with java code auditing 代码审计入门的小项目

  vulnerability-analysisssrfjavarcefastjsonjacksonxsssqlcodeweblogic
  Language:JavaScript 926

• morpheuslord / GPT_Vuln-analyzer

  Uses ChatGPT API, Bard API, and Llama2, Python-Nmap, DNS Recon, PCAP and JWT recon modules and uses the GPT3 model to create vulnerability reports based on Nmap scan data, and DNS scan information. It can also perform subdomain enumeration to a great extent

  ai-vulnerability-analysisbard-aibard-apichatgptchatgpt-apidnsdns-enumerationdns-enumeration-aidns-recordhacking-toolsinformation-gatheringllama2nmapnmap-apinmap-vulnerabilitynmap-vulnerability-analysis-aiopenairunpodterminalvulnerability-analysis
  Language:Python 584

• Cryin / Paper

  Web Security Technology & Vulnerability Analysis Whitepapers

  web-security-researchvulnerability-analysissecurity-technology-paper
  545

• SkyLined / BugId

  Detect, analyze and uniquely identify crashes in Windows applications

  bugvulnerabilityvulnerabilitiesvulnerability-detectionvulnerability-assessmentvulnerability-analysisanalysiscrashcrash-reportingreportidunique-iddebuggerdebuggingdebugging-toolcrash-analysisbug-analysiswindowspythonsecurity
  Language:Python 514

• ossf / fuzz-introspector

  Fuzz Introspector -- introspect, extend and optimise fuzzers

  fuzzingsecuritytestingvulnerability-analysisfuzz-testingsecurity-research
  Language:Python 431

• zeropointdynamics / zelos

  A comprehensive binary emulation and instrumentation platform.

  binarybinary-analysisemulationemulatorlinuxmalwaremalware-analysisvulnerability-analysis
  Language:Python 416

• julieeen / kleefl

  Seeding fuzzers with symbolic execution

  afl-fuzzkleefuzzingsymbolic-executionvulnerability-analysis
  Language:Python 203
• BugTrace-AI

  yz9yt / BugTrace-AI

  Intelligent web vulnerability analysis suite leveraging Generative AI for developers, pentesters, and security researchers.

  ai-toolsbug-bountycybersecuritypentestingvulnerability-analysisweb-security
  Language:TypeScript 78

• AppThreat / atom

  atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.

  application-analyticscode-analysisexploit-predictionintermediate-representationreachability-analysissupply-chainvariant-analysisvulnerability-analysis
  Language:Rust 72

• fkie-cad / iva

  IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to search for CVEs related to a software product.

  cpecvevulnerability-analysisvulnerability-scannersnvdcve-matchivasoftware-inventorysoftware-vulnerability
  Language:Python 67

• ra1nb0rn / avain

  A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

  extensibleframeworkhackingitsecuritymit-licensemodularnetsecnetwork-securitypenetration-testing-frameworkpentestpentestingvulnerability-analysisvulnerability-detectionvulnerability-identificationvulnerability-scanner
  Language:Python 66

• VainlyStrain / Vaile

  Metasploit-like pentest framework derived from TIDoS (https://github.com/0xInfection/TIDoS-Framework)

  vulnerability-analysisreconnaissanceweb-application-securityscannerosintenumerationexploitation-frameworkpentestingpentest-toolpython3exploitationscanningwebappsectidos-frameworkvulnerability-scannerspenetration-testing-frameworkweb-pentestinformation-disclosure
  Language:Python 66

• hestihesti / HackingComm

  A Tool For Absolute Beginners On Kali Linux. An Interactive Script That'll Guide You Through Attacks.

  beginner-friendlycomplete-guideexploitation-frameworksforensicsinformation-gatheringkali-linuxkali-linux-coursekali-linux-hackingkali-scriptskali-toolskali-tutorialpassword-attackspentesting-toolspost-exploitationsniffingspoofingvulnerability-analysisweb-application-analysiswireless-attacks
  Language:Python 64
• svm

  simplevulnerabilitymanager / svm

  Program to perform vulnerability analysis and automatically generate a report

  securityreportsvulnerability-managementvulnerabilitywindowshackingprofessional-vulnerabilitiesvulnerability-analysissvmsecurity-analystsscreenshot
  Language:Batchfile 57

• SoheilKhodayari / TheThing

  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities

  jawneo4jvulnerability-analysisdom-clobbering
  Language:Python 52

• BOB4Drone / Drone_Hacking_Guideline

  본 프로젝트는 KITRI BoB(Best of the Best) 10기에서 진행한 프로젝트로, 드론에 대한 취약성 연구를 진행한 내용을 기록하였습니다.

  vulnerability-analysisdroneqgroundcontrolmavrospx4mavlink
  40

• vuldb / vuldb-api-python-examples

  VulDB Python scripts to fetch data via API

  vulnerability-databasesvulnerability-database-entryvulnerability-managementvulnerability-identificationvulnerability-analysisvulnerabilityvulnerabilitiesapiapi-clientpythonpython-3cvenvd
  Language:Python 20

• ButrintKomoni / cve-2020-0796

  Identifying and Mitigating the CVE-2020–0796 flaw in the fly

  0daycve-2020-0796microsoftvulnerability-analysis
  Language:Python 19

• drjerry / cve-score

  ML research on software vulnerabilities

  vulnerability-analysismachine-learningexploit-predictionvulnerability-data
  Language:Python 19

• cristianovisk / regvuln

  RegVuln is a tool that use Engine Trivy to generate reports about images Docker from Registry, have integration with Defect Dojo to Vulnerability Management.

  dockerregistry-dockerregistry-ociregvulnvulnerability-analysisvulnerability-detectionvulnerability-scanning
  Language:Python 16

• aniket2912 / All-CEHv13-Module-wise-PDF-Reports

  Practical labs, notes, and reports for CEH v13 modules — covering web hacking, network pentesting, malware analysis, social engineering, and security tool usage.

  android-hackingcehv13denial-of-serviceenumerationethical-hackingfootprintingmalware-analysispenetration-testingscanningsession-hijackingsocial-engineeringsystem-hackingvulnerability-analysisweb-hackingfirewall-ids-ipsiot-security-ot-security
  15

• proxytype / RDP-THIEF

  RDP THIEF - inject dll to remote desktop process (mstsc.exe) and steal user credentials.

  vulnerabilityvulnerability-researchvulnerability-analysiswindows
  Language:C++ 13

• CERTCC / CERT-Guide-to-CVD

  Content for the CERT Guide to Coordinated Vulnerability Disclosure

  cvdvulnerabilityvulnerability-analysisvulnerability-disclosurevulnerability-disclosure-policiesvulnerability-disclosure-programvulnerability-managementvulnerability-reportsvulnerability-response
  Language:HTML 12

• BOB4Drone / Drone_Hacking_Guideline_ENG

  This project was conducted by the 10th KITRI BoB (Best of the Best), and recorded what we have done for vulnerability analysis of drones.

  dronemavrosvulnerability-analysisqgroundcontrolmavlinkpx4
  11

• TypeError / vuln-data-science

  Advanced vulnerability management and analysis through data science techniques

  security-analysisvulnerability-analysisvulnerability-managementcybersecurityexploit-predictionrisk-managementvulnerability-research
  Language:Jupyter Notebook 9

• paulveillard / cybersecurity-community

  An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources in Cybersecurity Community

  owaspowasp-check-listowasp-top-10vulnerabilityvulnerability-analysisvulnerability-assessment
  Language:HTML 6

• s-r-e-e-r-a-j / ReconHound

  ReconHound is a Python-based web reconnaissance tool designed for penetration testers, bug bounty hunters, and ethical hackers. It supports directory and file enumeration, subdomain enumeration, fuzzing, and virtual host (vhost) discovery.

  bugbountybugbounty-toolbugbounty-toolsbughuntercybersecurityethical-hackingethical-hacking-toolslinuxpenetration-testingpenetration-testing-toolspentest-toolpentest-toolspentestingpentesting-toolspythonpythontoolpythontoolsvulnerability-analysisvulnerability-assessmentvulnerability-identification
  Language:Python 6

• Satyamkumarnavneet / RedesignAutonomy

  Redesign Autonomy is an AI safety evaluation framework for LLM-assisted software engineering. It assesses risks like security flaws, overtrust, and misinterpretation in AI-generated code.

  ai-governanceai-safetyautonomous-systemscode-generationllm-evaluationmachine-learningrisk-assessmentsoftware-engineeringtrust-in-aivulnerability-analysis
  Language:Python 6

• vuldb / vuldb-api-win-batch-curl-examples

  VulDB batch scripts that use curl to fetch data via API

  vulnerability-databasesvulnerability-database-entryvulnerability-managementvulnerability-identificationvulnerability-analysisvulnerabilityvulnerabilitiesapiapi-clientwindowsbatchbatch-scriptcvenvd
  Language:Batchfile 6

• arvindpj007 / Reverse-Engineering-CISCO-OpenConnect

  The task was to reverse engineer an open-source software and a custom binary using various diagnostic tools and security assessment techniques.

  open-sourcebinary-analysisvelesbinvisreverse-engineeringobjdumplddnmscitoolskataivulnerability-analysis
  5

• ericyoc / iot_device_firmware_analysis_poc

  Performs firmware analysis on a given binary file.

  binary-filefirmware-analysisreverse-engineeringiot-devicevulnerability-analysis
  Language:Jupyter Notebook 5

• arvindpj007 / Threat-Modeling-CISCO-OpenConnect

  Threat modeling of an open-source VPN Client - OpenConnect using Microsoft Threat Modeling Tool

  software-vulnerabilityvulnerability-analysisthreat-modelingmicrosoft-threat-modeling-tool
  4

• Dr4ks / Natas_Labs_Solution

  Hello, this is repository which has solutions for Natas Labs.

  bugbountypenetration-testingsecurityctfnatas-labs-solutionscryptographycybersecurityforensicsnetworknetwork-secweb-exploitationcyber-defenseethical-hackingexploit-developmentsecurity-toolsvulnerability-analysis
  4

• vulnlog / vulnlog

  Software Vulnerability Tracking for Development Teams

  software-securityapplication-securitydevsecopsdslscasecurity-automationsuppressionsvulnerabilitiesvulnerability-analysisvulnerability-reportsvulnerability-suppressions
  Language:Kotlin 4