Top 89 vulnerability-detection open source projects

Grunt plugin for retire.

SQL Injection Payload List

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

🔐 Shim to easily install OWASP dependency-check-cli into Python projects

Check CPAN modules for known security vulnerabilities

Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.

Wazuh - Puppet module

JAW: A Graph-based Security Analysis Framework for JavaScript and Client-side CSRF

Advanced Web Browser Fingerprinting

FUNDED is a novel learning framework for building vulnerability detection models.

Central Processing Unit Information Gathering Tool

Smart Contract Vulnerability Detection Using Graph Neural Networks (IJCAI-20 Accepted)

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Port of "DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers" to Clang/LLVM 10 and Linux Kernel

Wazuh - Amazon AWS Cloudformation

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

A collection of my quick and dirty scripts for vulnerability POC and detections

Wazuh - Ansible playbook

Vulnerability database and package search for sources such as OSV, NVD, GitHub and npm.

Wazuh - Tools for packages creation

Advanced file format fuzzer based-on deep neural language models.

T-XPLOITER is a Perl program for detect and (even) exploit website(s). Why the name is T-XPLOITER ? T means Triple, XPLOITER means Exploiter. This program has 3 features and functions to detect and (even) exploit website(s), just check it out :).

The knife of the Admin & Security auditor

Kubescape is a K8s open-source tool providing a multi-cloud K8s single pane of glass, including risk analysis, security compliance, RBAC visualizer and image vulnerabilities scanning.

Mixeway Scanner is Spring Boot application which aggregate integration with number of OpenSource Vulnerability scanners - both SAST and DAST types

Toolset for detecting reflected xss in websites

Static and dynamic Android application security analysis

GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.

Smart contract vulnerability detection using graph neural network (DR-GCN).