vulnerability-assessment

There are 46 repositories under vulnerability-assessment topic.

• projectdiscovery / nuclei

  Fast and customizable vulnerability scanner based on simple YAML based DSL.

  attack-surfacecve-scannerhacktoberfestnuclei-enginesecuritysecurity-scannersubdomain-takeovervulnerability-assessmentvulnerability-detectionvulnerability-scanner
  Language:Go 17438
• h4cker

  The-Art-of-Hacking / h4cker

  This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.

  aiai-securityartificial-intelligenceawesome-listawesome-listscybersecurityethical-hackingexploitexploit-developmentexploitshackerhackershackinghacking-seriespenetration-testingtrainingvulnerabilityvulnerability-assessmentvulnerability-identificationvulnerability-management
  Language:Jupyter Notebook 16739

• CISOfy / lynis

  Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

  shelllinuxpci-dsscompliancesecurity-auditsecurity-hardeningsecurity-scannersecurity-vulnerabilityhipaaunixvulnerability-detectionvulnerability-scannersvulnerability-assessmentdevopsdevops-toolssystem-hardeninghardeningauditinggdprsecurity-tools
  Language:Shell 12581

• future-architect / vuls

  Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

  administratorcybersecurityfreebsdgogolanglinuxsecuritysecurity-auditsecurity-automationsecurity-hardeningsecurity-scannersecurity-toolssecurity-vulnerabilityvulnerabilitiesvulnerability-assessmentvulnerability-detectionvulnerability-managementvulnerability-scannervulnerability-scannersvuls
  Language:Go 10698

• ysrc / xunfeng

  巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

  securitypentestinginfosecexploitssecurity-auditvulnerability-detectionscannervulnerability-assessmentvulnerability-scanners
  Language:Python 3504

• scipag / vulscan

  Advanced vulnerability scanning with Nmap NSE

  vulnerabilityvulnerability-scannersvulnerability-detectionvulnerability-identificationvulnerability-assessmentsecuritysecurity-auditsecurity-scannerpenetration-testingnmapnmap-scriptsexploitvulnerability-scanningvulnerability-databasesvulnerability-database-entrynmap-scan-scriptnsensescriptlualua-script
  Language:Lua 3337

• evyatarmeged / Raccoon

  A high performance offensive security tool for reconnaissance and vulnerability scanning

  reconnaissancescannervulnerability-assessmentvulnerability-scannerenumerationpentestingpentest-toolhacking-tooloffensive-securitysecurity-scannerfuzzinginformation-gatheringhackingraccoonosint
  Language:Python 3005

• greenbone / openvas-scanner

  This repository contains the scanner component for Greenbone Community Edition.

  openvasvulnerabilityvulnerability-scannersvulnerability-detectionvulnerability-assessmentscannervulnerability-managementgreenbonegreenbone-vulnerability-managementgvmopenvas-scannergreenbone-community-editionfooctechops
  Language:C 2922

• cve-search / cve-search

  cve-search - a tool to perform local searches for known vulnerabilities

  cve-searchcommon-vulnerabilitiescpecve-databasesvulnerabilitiesvulnerability-detectionvulnerability-assessmentcvecve-scanningcve-entries
  Language:Python 2207

• archerysec / archerysec

  Automate Your Application Security Orchestration And Correlation (ASOC) Using ArcherySec.

  vulnerability-assessmentvulnerabilitiesscanningpentestingvulnerability-managementopensourcepentesterssecdevopsdevopsdevops-toolsdevsecops
  Language:JavaScript 2206

• anouarbensaad / vulnx

  vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collection (including sub-domain name, ip address, country information, organizational information and time zone, etc.) and vulnerability scanning.

  crawlerinformation-gatheringcms-detectorcloudflare-detectionbotpentestwp-scannerauto-exploitervulnerabilityhackingwebsite-vulnerability-scannersecurity-toolsvulnerability-assessmentvulnerability-exploitvulnerability-detectionshell-injectiondetects-vulnerabilitiesexploitsdorkssubdomains-gathering
  Language:Python 1827

• skavngr / rapidscan

  :new: The Multi-Tool Web Vulnerability Scanner.

  enumerationkali-linuxkali-scriptsoffensive-securityoscppenetration-testingpenetration-testing-frameworkreconnaissancescannerscanner-websecurity-scannersecurity-scanningsecurity-toolsvulnerabilitiesvulnerability-assessmentvulnerability-detectionvulnerability-managementvulnerability-scannervulnerability-scannersweb-vulnerabilities-scanner
  Language:Python 1660
• XAttacker

  Moham3dRiahi / XAttacker

  X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

  auto-exploiterdrupalexploitexploitationhackinghacking-tooljoomlalokomediapentestprestashopscannersecurity-scannersecurity-toolsvulnerability-assessmentvulnerability-detectionvulnerability-exploitvulnerability-scannerwebsite-vulnerability-scannerwordpresswp-scanner
  Language:Perl 1502

• felixgr / secure-ios-app-dev

  Collection of the most common vulnerabilities found in iOS applications

  iossecuritysecurity-auditvulnerability-assessment
  1375

• olacabs / jackhammer

  Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

  security-vulnerability-assessmentvulnerability-managementstatic-code-analysismobile-securitywebappsecwordpress-securitynetwork-securitysecurity-scannersecuritydynamic-analysissource-code-analysispenetration-testingpenetration-testing-frameworkapplication-securityvulnerability-scannersvulnerability-scanningvulnerability-assessment
  Language:Java 716

• m0nad / HellRaiser

  Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

  vulnerability-scannersrailsrubynmapsecurity-toolssecurity-auditsecuritynetworknetwork-analysisscannercvecve-scanningvulnerability-assessmentvulnerability-detectionhackinghacking-tool
  Language:Ruby 552

• frizb / Vanquish

  Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

  kali-linuxoscpvulnerability-scannersvulnerability-assessmentoffensive-securitypythonpenetration-testingpenetration-testing-framework
  Language:Python 502

• SkyLined / BugId

  Detect, analyze and uniquely identify crashes in Windows applications

  bugvulnerabilityvulnerabilitiesvulnerability-detectionvulnerability-assessmentvulnerability-analysisanalysiscrashcrash-reportingreportidunique-iddebuggerdebuggingdebugging-toolcrash-analysisbug-analysiswindowspythonsecurity
  Language:Python 496
• nerve

  PaytmLabs / nerve

  NERVE Continuous Vulnerability Scanner

  securitysecurity-toolssecurity-testingvulnerability-scannersvulnerability-assessmentvulnerability-detection
  Language:Python 437

• we1h0 / SecurityManageFramwork

  Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

  securitypentestinginfosecexploitssecurity-auditvulnerability-detectionscannervulnerability-assessmentvulnerability-scanners
  Language:Python 424

• flipkart-incubator / watchdog

  Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

  security-toolssecuritysecurity-vulnerabilitysecurity-testingvulnerability-managementvulnerability-assessmentpentest-toolpenetration-testing-frameworkcve-databasescve-searchapplication-securitynetwork-securityproduct-securitybugbounty
  Language:Python 407

• abdulr7mann / hackerEnv

  hacking-toolshacking-toolpentest-toolpentest-scriptspentestingpentestpentesterpentesterlabkali-linuxkali-scriptsvulnerability-scannersvulnerability-assessmentkali-tools
  Language:Shell 404

• sethsec / celerystalk

  An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.

  scanningsubdomainvirtual-hostsscreenshotceleryvulnerability-scannersvulnerability-assessmentenumerationnessusnmapniktogobusterspider
  Language:Python 393
• mageni

  mageni / mageni

  Open-source vulnerability scanner

  cloudcybersecuritylaravellinuxmacosnetworkingopensourcepenetration-testingpentestingphpsecuritysecurity-auditsecurity-toolsvulnerability-assessmentvulnerability-detectionvulnerability-managementvulnerability-scannervulnerability-scannersvulnerability-scanningwindows
  313

• Martyx00 / VulnFanatic

  A Binary Ninja plugin for vulnerability research.

  vulnerabilityexploit-developmentvulnerability-scannersvulnerability-assessment
  Language:Python 273

• greenbone / gsa

  Greenbone Security Assistant - The web frontend for the Greenbone Community Edition

  openvasgreenbonevulnerabilityvulnerability-scannersvulnerability-managementvulnerability-assessmentvulnerability-detectiongsadgvmgreenbone-security-assistanthacktoberfestbasefrontendgeajavascriptgreenbone-community-edition
  Language:JavaScript 204
• Vailyn

  VainlyStrain / Vailyn

  A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

  websecurityinformation-leakexploitationvulnerability-scannersdirectory-traversalpath-traversalpentest-toolwebsecvulnerability-assessmentpenetration-testingfilter-evasionvulnerability-detectionpentestinglfilfi-shellslfi-exploitationsecuritylocal-file-inclusionrcetakeover
  Language:Python 191
• bulwark

  softrams / bulwark

  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

  security-toolsvulnerability-managementangulartypeormtypescriptnodejsexpresswebappsecappsecapplication-securityvulnerability-reportpentestingvulnerability-assessmentsecurity-toolpenetration-testing-toolsvulnerability-researchbugbountyblue-teamred-team
  Language:TypeScript 178

• InfoSecWarrior / Offensive-Payloads

  List of payloads and wordlists that are specifically crafted to identify and exploit vulnerabilities in target web applications.

  bugbountypayloadspentestpentestingsecurityvulnerability-assessmentwordlists
  166

• greenbone / gvm-tools

  Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance

  greenboneopenvasvulnerabilityvulnerability-assessmentvulnerability-managementopenvas-cligvmgmpgreenbone-vulnerability-managergvm-pyshellgvm-cliosppythongmp-scriptsompgvm-scriptbasegeatooling
  Language:Python 155

• OWASP / ASST

  OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.

  asstweb-vulnerability-scannerscybersecurityowasp-top-10owaspvulnerability-scannersweb-vulnerability-scannervulnerability-detectionvulnerability-scannervulnerability-assessmentsecurity-assesment-security-toolssecurity-assessmentssecurity-auditsecurity-hardeningsecurity-testing
  Language:JavaScript 152

• target / portauthority

  API that leverages Clair to scan Docker Registries and Kubernetes Clusters for vulnerabilities

  clairdocker-imagegolangkubernetespolicy-enginevulnerability-assessment
  Language:Go 151

• Rezilion / mi-x

  Determine whether your compute is truly vulnerable to a specific vulnerability by accounting for all factors which affect *actual* exploitability (runtime execution, configuration, permissions, existence of a mitigation, OS, etc..)

  securityvulnerability-assessmentappsecvulnerability-validation
  Language:Python 143
• UnSAFE_Bank

  lucideus-repo / UnSAFE_Bank

  Vulnerable Banking Suite

  cybersecuritysecurity-vulnerabilitylearnvulnerability-assessmentlearning-by-doingsecurity-testingmobile-securityapplication-securityethical-hackingwhitehathackingvulnerable-applicationsvulnerable-webservervulnerable-android-appsvulnerable-ios-appsvulnerable-web-app
  Language:PHP 138

• intrigueio / intrigue-ident

  Application and Service Fingerprinting

  security-scannersecurity-toolsvulnerability-assessment
  Language:Ruby 132

• ethicalhackingplayground / erebus

  Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.

  vulnerability-detectionvulnerability-assessmentvulnerability-scannererebus-engineparameter-testing
  Language:Go 126