avainA Modular Framework for the Automated Vulnerability Analysis in IP-based Networks
cpan-auditCheck CPAN modules for known security vulnerabilities
erebusErebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.
JAWJAW: A Graph-based Security Analysis Framework for JavaScript and Client-side CSRF
FUNDED NISLFUNDED is a novel learning framework for building vulnerability detection models.
PyCPUCentral Processing Unit Information Gathering Tool
GNNSCVulDetectorSmart Contract Vulnerability Detection Using Graph Neural Networks (IJCAI-20 Accepted)
vulnerablecodeA free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
dr checker 4 linuxPort of "DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers" to Clang/LLVM 10 and Linux Kernel
scan-cli-pluginDocker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images
quick-scriptsA collection of my quick and dirty scripts for vulnerability POC and detections
vulnerability-dbVulnerability database and package search for sources such as OSV, NVD, GitHub and npm.
iust deep fuzzAdvanced file format fuzzer based-on deep neural language models.
T-XPLOITERT-XPLOITER is a Perl program for detect and (even) exploit website(s). Why the name is T-XPLOITER ? T means Triple, XPLOITER means Exploiter. This program has 3 features and functions to detect and (even) exploit website(s), just check it out :).
patton-cliThe knife of the Admin & Security auditor
kubescapeKubescape is a K8s open-source tool providing a multi-cloud K8s single pane of glass, including risk analysis, security compliance, RBAC visualizer and image vulnerabilities scanning.
MixewayScannerMixeway Scanner is Spring Boot application which aggregate integration with number of OpenSource Vulnerability scanners - both SAST and DAST types
xssfinderToolset for detecting reflected xss in websites
aparoidStatic and dynamic Android application security analysis
gradejsGradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.