vulscanteam / Vulscan
Licence: mit
vulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...
Stars: ✭ 486
Programming Languages
python
139335 projects - #7 most used programming language
Projects that are alternatives of or similar to Vulscan
Arissploit
Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.
Stars: ✭ 114 (-76.54%)
Mutual labels: vulnerability, vulnerability-scanners, exploitation-framework
Hacking
hacker, ready for more of our story ! 🚀
Stars: ✭ 413 (-15.02%)
Mutual labels: vulnerability, vulnerability-scanners, poc
Ary
Ary 是一个集成类工具,主要用于调用各种安全工具,从而形成便捷的一键式渗透。
Stars: ✭ 241 (-50.41%)
Mutual labels: vulnerability, vulnerability-scanners, poc
Trivy
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Stars: ✭ 9,673 (+1890.33%)
Mutual labels: security-tools, vulnerability, vulnerability-scanners
Salt Scanner
Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration
Stars: ✭ 261 (-46.3%)
Mutual labels: security-tools, vulnerability-scanners
Nerve
NERVE Continuous Vulnerability Scanner
Stars: ✭ 267 (-45.06%)
Mutual labels: security-tools, vulnerability-scanners
Vbscan
OWASP VBScan is a Black Box vBulletin Vulnerability Scanner
Stars: ✭ 295 (-39.3%)
Mutual labels: vulnerability, vulnerability-scanners
Fireelf
fireELF - Fileless Linux Malware Framework
Stars: ✭ 435 (-10.49%)
Mutual labels: security-tools, exploitation-framework
NSE-scripts
NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473
Stars: ✭ 105 (-78.4%)
Mutual labels: poc, vulnerability
Raptor
Web-based Source Code Vulnerability Scanner
Stars: ✭ 314 (-35.39%)
Mutual labels: security-tools, vulnerability-scanners
Shiro exploit
Apache Shiro 反序列化漏洞检测与利用工具
Stars: ✭ 252 (-48.15%)
Mutual labels: vulnerability, vulnerability-scanners
OpenVAS-Docker
A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)
Stars: ✭ 16 (-96.71%)
Mutual labels: vulnerability-scanners, security-tools
Faraday
Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+558.02%)
Mutual labels: vulnerability, vulnerability-scanners
klustair
(Deprecated) Submit all images in your Kubernetes cluster to Anchore for a vulnerability check and check your configuration with kubeaudit
Stars: ✭ 15 (-96.91%)
Mutual labels: vulnerability, vulnerability-scanners
Iblessing
iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.
Stars: ✭ 326 (-32.92%)
Mutual labels: vulnerability, vulnerability-scanners
Ladongo
Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架,使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost,远程执行SSH/Winrm,密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis,端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机,端口扫描服务识别PortScan。
Stars: ✭ 366 (-24.69%)
Mutual labels: security-tools, poc
Patrowlmanager
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Stars: ✭ 363 (-25.31%)
Mutual labels: security-tools, vulnerability-scanners
A Red Teamer Diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (-21.4%)
Mutual labels: security-tools, vulnerability
VulScan 
VulScan是一款基于Pocsuite开发的POC插件扫描器,遵循高内聚、低耦合、轻量级 vulscan poc管理工具,使用django 做web界面友好的集成了Pocsuite-dev、支持扩展模块、扩展POC等功能!
请使用者遵守 中华人民共和国网络安全法,勿将VulScan用于非授权的测试,Vulscan开发者不负任何连带法律责任。
主要功能:一键扫描 POC插件 端口扫描 基线检查 网址导航 扩展模块 等等;
一键扫描
POC插件
端口扫描
基线检查
网址导航
扩展模块
安装指南 
安装命令:pip install -r requirements.txt
(打包命令:pip freeze> requirements.txt //如果开发POC需要新的依赖库,在这里记录,尽可能的不使用依赖库减少依赖) (默认账户demo,密码demo123456) 如果安装依赖库有失败的,需要手工pip安装一下,安装完成后直接 run.bat 或 run.sh, 访问 http://127.0.0.1:8000
插件编写
目录下的Template.py为插件模版,基于pocsuite配置了一些规则
目录结构
- accounts #账户应用
- appscan #扫描应用
- jixianjiancha #基线检查应用
- log #日志路径
- plug #扩展应用
- pocsuite #pocsuite核心库
- portscan #端口扫描应用
- vul #POC存放目录
- weakpass #弱口令文件
- webscan #主项目
维护作者
- ly55521
- colorway
- xiaohuihui1
- arr0w1
问题反馈
微信群二维码:(如果二维码过期,加微信 baidunew 备注 Vulscan看到的)
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].