262 Open source projects that are alternatives of or similar to cpan-audit

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

🐞 Primitive Erlang Security Tool

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

🔐 Shim to easily install OWASP dependency-check-cli into Python projects

grep rough audit - source code auditing tool

Web Application Security Scanner Framework

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Advanced vulnerability scanning with Nmap NSE

A collection of my quick and dirty scripts for vulnerability POC and detections

A web spider for shodan.io without using the Developer API.

Python source code auditing and static analysis on a large scale

Vulnerability database and package search for sources such as OSV, NVD, GitHub and npm.

A Linux Host-based Intrusion Detection System based on eBPF.

⚡️ Docker official image for Wallarm Node. API security platform agent.

RFMap - Radio Frequency Mapper

T-XPLOITER is a Perl program for detect and (even) exploit website(s). Why the name is T-XPLOITER ? T means Triple, XPLOITER means Exploiter. This program has 3 features and functions to detect and (even) exploit website(s), just check it out :).

Smart Contract Vulnerability Detection Using Graph Neural Networks (IJCAI-20 Accepted)

LIFARS Networking Security GNU/Linux distro

Kubescape is a K8s open-source tool providing a multi-cloud K8s single pane of glass, including risk analysis, security compliance, RBAC visualizer and image vulnerabilities scanning.

Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.

JAW: A Graph-based Security Analysis Framework for JavaScript and Client-side CSRF

Github mirror of "mediawiki/tools/phan/SecurityCheckPlugin" - our actual code is hosted with Gerrit (please see https://www.mediawiki.org/wiki/Developer_access for contributing)

Scan Singularity container images using a Clair server

Provides various Windows Server Active Directory (AD) security-focused reports.

Central Processing Unit Information Gathering Tool

This is the official main repository for the Assimilation project

Find secrets on any machine from over 120 Different Signatures.

Wazuh - Ansible playbook

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Wazuh - Tools for packages creation

A simple tool to detect outdated shared libraries

Advanced file format fuzzer based-on deep neural language models.

VOIP Security Audit Framework

CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules. Beta version.

Wazuh - Puppet module

The knife of the Admin & Security auditor

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Mixeway Scanner is Spring Boot application which aggregate integration with number of OpenSource Vulnerability scanners - both SAST and DAST types

Packet communication investigator

ISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-auditing-framework.

SEC分布式资产扫描系统

RubySec Field Guide

A Github Repository Created to compliment a BSides Canberra 2018 talk on SharePoint Security.

RockYou2021.txt is a MASSIVE WORDLIST compiled of various other wordlists. RockYou2021.txt DOES NOT CONTAIN USER:PASS logins!

Port of "DR.CHECKER : A Soundy Vulnerability Detection Tool for Linux Kernel Drivers" to Clang/LLVM 10 and Linux Kernel

Want to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳

Docker auditing and enumeration script.

Wazuh - Amazon AWS Cloudformation

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source

Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation

Advanced Web Browser Fingerprinting

A curated list of security resources for a Ruby on Rails application

Toolset for detecting reflected xss in websites

Static and dynamic Android application security analysis

A community collection of security reviews of open source software components.