vulnerability-assessment

There are 48 repositories under vulnerability-assessment topic.

• projectdiscovery / nuclei

  Fast and customizable vulnerability scanner based on simple YAML based DSL.

  cve-scannersubdomain-takeovernuclei-enginevulnerability-detectionvulnerability-assessmentvulnerability-scannersecurityattack-surfacesecurity-scannerhacktoberfest
  Language:Go 18472
• h4cker

  The-Art-of-Hacking / h4cker

  This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.

  aiai-securityartificial-intelligenceawesome-listawesome-listscybersecurityethical-hackingexploitexploit-developmentexploitshackerhackershackinghacking-seriespenetration-testingtrainingvulnerabilityvulnerability-assessmentvulnerability-identificationvulnerability-management
  Language:Jupyter Notebook 17323

• CISOfy / lynis

  Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

  shelllinuxpci-dsscompliancesecurity-auditsecurity-hardeningsecurity-scannersecurity-vulnerabilityhipaaunixvulnerability-detectionvulnerability-scannersvulnerability-assessmentdevopsdevops-toolssystem-hardeninghardeningauditinggdprsecurity-tools
  Language:Shell 12834

• future-architect / vuls

  Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

  vulsvulnerability-scannersgolanggolinuxfreebsdvulnerability-detectionsecuritysecurity-toolscybersecuritysecurity-vulnerabilitysecurity-scannersecurity-hardeningsecurity-automationsecurity-auditvulnerability-assessmentvulnerability-managementvulnerability-scannervulnerabilitiesadministrator
  Language:Go 10810

• ysrc / xunfeng

  巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

  securitypentestinginfosecexploitssecurity-auditvulnerability-detectionscannervulnerability-assessmentvulnerability-scanners
  Language:Python 3520

• scipag / vulscan

  Advanced vulnerability scanning with Nmap NSE

  exploitlualua-scriptnmapnmap-scan-scriptnmap-scriptsnsensescriptpenetration-testingsecuritysecurity-auditsecurity-scannervulnerabilityvulnerability-assessmentvulnerability-database-entryvulnerability-databasesvulnerability-detectionvulnerability-identificationvulnerability-scannersvulnerability-scanning
  Language:Lua 3392

• greenbone / openvas-scanner

  This repository contains the scanner component for Greenbone Community Edition.

  cfoogreenbonegreenbone-community-editiongreenbone-vulnerability-managementgvmopenvasopenvas-scannerscannertechopsvulnerabilityvulnerability-assessmentvulnerability-detectionvulnerability-managementvulnerability-scanners
  Language:Rust 3090

• evyatarmeged / Raccoon

  A high performance offensive security tool for reconnaissance and vulnerability scanning

  reconnaissancescannervulnerability-assessmentvulnerability-scannerenumerationpentestingpentest-toolhacking-tooloffensive-securitysecurity-scannerfuzzinginformation-gatheringhackingraccoonosint
  Language:Python 3036

• cve-search / cve-search

  cve-search - a tool to perform local searches for known vulnerabilities

  cve-searchcommon-vulnerabilitiescpecve-databasesvulnerabilitiesvulnerability-detectionvulnerability-assessmentcvecve-scanningcve-entries
  Language:Python 2251

• archerysec / archerysec

  ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.

  vulnerability-assessmentvulnerabilitiesscanningpentestingvulnerability-managementopensourcepentesterssecdevopsdevopsdevops-toolsdevsecopsasocaspm
  Language:JavaScript 2240

• anouarbensaad / vulnx

  vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collection (including sub-domain name, ip address, country information, organizational information and time zone, etc.) and vulnerability scanning.

  auto-exploiterbotcloudflare-detectioncms-detectorcrawlerdetects-vulnerabilitiesdorksexploitshackinginformation-gatheringpentestsecurity-toolsshell-injectionsubdomains-gatheringvulnerabilityvulnerability-assessmentvulnerability-detectionvulnerability-exploitwebsite-vulnerability-scannerwp-scanner
  Language:Python 1860

• skavngr / rapidscan

  :new: The Multi-Tool Web Vulnerability Scanner.

  scannervulnerability-scannersscanner-webweb-vulnerabilities-scannersecurity-toolssecurity-scannerpenetration-testing-frameworkpenetration-testingvulnerability-assessmentvulnerability-scannervulnerability-managementoscpvulnerability-detectionkali-scriptskali-linuxvulnerabilitiessecurity-scanningoffensive-securityenumerationreconnaissance
  Language:Python 1697
• XAttacker

  Moham3dRiahi / XAttacker

  X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

  vulnerability-scannervulnerability-detectionvulnerability-exploitvulnerability-assessmentsecurity-scannerscannersecurity-toolswebsite-vulnerability-scannerhackinghacking-toolpentestwp-scannerwordpressprestashopjoomlalokomediadrupalauto-exploiterexploitexploitation
  Language:Perl 1528

• felixgr / secure-ios-app-dev

  Collection of the most common vulnerabilities found in iOS applications

  iossecuritysecurity-auditvulnerability-assessment
  1383

• olacabs / jackhammer

  Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

  security-vulnerability-assessmentvulnerability-managementstatic-code-analysismobile-securitywebappsecwordpress-securitynetwork-securitysecurity-scannersecuritydynamic-analysissource-code-analysispenetration-testingpenetration-testing-frameworkapplication-securityvulnerability-scannersvulnerability-scanningvulnerability-assessment
  Language:Java 719

• m0nad / HellRaiser

  Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

  cvecve-scanninghackinghacking-toolnetworknetwork-analysisnmaprailsrubyscannersecuritysecurity-auditsecurity-toolsvulnerability-assessmentvulnerability-detectionvulnerability-scanners
  Language:Ruby 555

• frizb / Vanquish

  Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

  kali-linuxoffensive-securityoscppenetration-testingpenetration-testing-frameworkpythonvulnerability-assessmentvulnerability-scanners
  Language:Python 502

• SkyLined / BugId

  Detect, analyze and uniquely identify crashes in Windows applications

  bugvulnerabilityvulnerabilitiesvulnerability-detectionvulnerability-assessmentvulnerability-analysisanalysiscrashcrash-reportingreportidunique-iddebuggerdebuggingdebugging-toolcrash-analysisbug-analysiswindowspythonsecurity
  Language:Python 500
• nerve

  PaytmLabs / nerve

  NERVE Continuous Vulnerability Scanner

  securitysecurity-testingsecurity-toolsvulnerability-assessmentvulnerability-detectionvulnerability-scanners
  Language:Python 442

• we1h0 / SecurityManageFramwork

  Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

  exploitsinfosecpentestingscannersecuritysecurity-auditvulnerability-assessmentvulnerability-detectionvulnerability-scanners
  Language:Python 425

• flipkart-incubator / watchdog

  Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

  application-securitybugbountycve-databasescve-searchnetwork-securitypenetration-testing-frameworkpentest-toolproduct-securitysecuritysecurity-testingsecurity-toolssecurity-vulnerabilityvulnerability-assessmentvulnerability-management
  Language:Python 411

• abdulr7mann / hackerEnv

  hacking-toolhacking-toolskali-linuxkali-scriptskali-toolspentestpentest-scriptspentest-toolpentesterpentesterlabpentestingvulnerability-assessmentvulnerability-scanners
  Language:Shell 408

• sethsec / celerystalk

  An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.

  scanningsubdomainvirtual-hostsscreenshotceleryvulnerability-scannersvulnerability-assessmentenumerationnessusnmapniktogobusterspider
  Language:Python 396
• mageni

  mageni / mageni

  Open-source vulnerability scanner

  cloudcybersecuritylaravellinuxmacosnetworkingopensourcepenetration-testingpentestingphpsecuritysecurity-auditsecurity-toolsvulnerability-assessmentvulnerability-detectionvulnerability-managementvulnerability-scannervulnerability-scannersvulnerability-scanningwindows
  Language:NASL 337

• Martyx00 / VulnFanatic

  A Binary Ninja plugin for vulnerability research.

  vulnerabilityexploit-developmentvulnerability-scannersvulnerability-assessment
  Language:Python 274

• greenbone / gsa

  Greenbone Security Assistant - The web frontend for the Greenbone Community Edition

  openvasgreenbonevulnerabilityvulnerability-scannersvulnerability-managementvulnerability-assessmentvulnerability-detectiongsadgvmgreenbone-security-assistanthacktoberfestbasefrontendgeajavascriptgreenbone-community-edition
  Language:JavaScript 208
• Vailyn

  VainlyStrain / Vailyn

  A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

  directory-traversalexploitationfilter-evasioninformation-leaklfilfi-exploitationlfi-shellslocal-file-inclusionpath-traversalpenetration-testingpentest-toolpentestingrcesecuritytakeovervulnerability-assessmentvulnerability-detectionvulnerability-scannerswebsecwebsecurity
  Language:Python 191

• InfoSecWarrior / Offensive-Payloads

  List of payloads and wordlists that are specifically crafted to identify and exploit vulnerabilities in target web applications.

  bugbountypayloadspentestpentestingsecurityvulnerability-assessmentwordlists
  Language:PHP 186
• bulwark

  softrams / bulwark

  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

  security-toolsvulnerability-managementangulartypeormtypescriptnodejsexpresswebappsecappsecapplication-securityvulnerability-reportpentestingvulnerability-assessmentsecurity-toolpenetration-testing-toolsvulnerability-researchbugbountyblue-teamred-team
  Language:TypeScript 181

• greenbone / gvm-tools

  Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance

  greenboneopenvasvulnerabilityvulnerability-assessmentvulnerability-managementopenvas-cligvmgmpgreenbone-vulnerability-managergvm-pyshellgvm-cliosppythongmp-scriptsompgvm-scriptbasegeatooling
  Language:Python 159

• OWASP / ASST

  OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.

  asstcybersecurityowaspowasp-top-10security-assesment-security-toolssecurity-assessmentssecurity-auditsecurity-hardeningsecurity-testingvulnerability-assessmentvulnerability-detectionvulnerability-scannervulnerability-scannersweb-vulnerability-scannerweb-vulnerability-scanners
  Language:JavaScript 157

• target / portauthority

  API that leverages Clair to scan Docker Registries and Kubernetes Clusters for vulnerabilities

  clairdocker-imagegolangkubernetespolicy-enginevulnerability-assessment
  Language:Go 151
• UnSAFE_Bank

  lucideus-repo / UnSAFE_Bank

  Vulnerable Banking Suite

  cybersecuritysecurity-vulnerabilitylearnvulnerability-assessmentlearning-by-doingsecurity-testingmobile-securityapplication-securityethical-hackingwhitehathackingvulnerable-applicationsvulnerable-webservervulnerable-android-appsvulnerable-ios-appsvulnerable-web-app
  Language:PHP 146

• Rezilion / mi-x

  Determine whether your compute is truly vulnerable to a specific vulnerability by accounting for all factors which affect *actual* exploitability (runtime execution, configuration, permissions, existence of a mitigation, OS, etc..)

  securityvulnerability-assessmentappsecvulnerability-validation
  Language:Python 140

• intrigueio / intrigue-ident

  Application and Service Fingerprinting

  vulnerability-assessmentsecurity-scannersecurity-tools
  Language:Ruby 131

• ethicalhackingplayground / erebus

  Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.

  vulnerability-detectionvulnerability-assessmentvulnerability-scannererebus-engineparameter-testing
  Language:Go 129