4323 Open source projects that are alternatives of or similar to Kube Hunter

Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.

WPScan rewritten in Python + some WPSeku ideas

Find known vulnerabilities in your dependencies

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

Performing security tests inside your CI

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

This tool scans for a number of common, vulnerable components (openssl, libpng, libxml2, expat and a few others) to let you know if your system includes common libraries with known vulnerabilities.

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

List of every possible vulnerabilities in computer security.

This is a repo is to upload files done during my research.

Tool for breaking into web applications.

Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

ClusterFuzzLite - Simple continuous fuzzing that runs in CI.

Agent scanner for vulners.com

A comedy party game for PC, mobile & chromecast.

Intentionally vulnerable Android application.

🎩 [penetration testing Book], Kali Magic, Cryptography, Hash Crack, Botnet, Rootkit, Malware, Spyware, Python, Go, C|EH.

A cross platform library for interfacing with local and remote Linux IIO devices

Anchore container analysis and scan provided as a GitHub Action

Parsl - Parallel Scripting Library

异步漏洞利用框架

Script to test open Akamai ARL vulnerability.

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

This sample shows how to use the Application Gateway Ingress Controller in a multi-tenant AKS cluster to expose multiple instances of the same application, one for each tenant.

Oracle Cloud Infrastructure Service Broker is an open source implementation of Open service broker API Spec for OCI services. Customers can use this implementation to install Open Service Broker in Oracle Container Engine for Kubernetes or in other Kubernetes clusters.

Bug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities...

It's a Docker Environment for pentesting which having all the required tool for VAPT.

ConPan: Analyze your Docker container in peace

dr.rer.oec.gadget IDAPython plugin for the Interactive Disassembler <ABANDONED PROJECT>

Azure Industrial IoT Platform

OpenType font file format fuzzer for Windows

QCTF School 2018. Developed with ♥ by Hackerdom team

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

Uma lista de canais ou cursos sobre tecnologia feitos por mulheres.

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

PHDays Online CTF 2017. Developed with ♥ by Hackerdom team

EasyBuggy clone built on Django

Regression, Scrapers, and Visualization

essential templates for kenzer

AutoVAS is an automated vulnerability analysis system with a deep learning approach.

Kubetools - Curated List of Kubernetes Tools

Next-gen identity server (think Auth0, Okta, Firebase) with Ory-hardened authentication, MFA, FIDO2, profile management, identity schemas, social sign in, registration, account recovery, and IoT auth. Golang, headless, API-only - without templating or theming headaches.

Zero-setup SSH-based scanner with extensive visualizations for Debian server inventory, policy compliance and vulnerabilities

Making CoreOS' Clair easily work in CI/CD pipelines

This repository provides a security policies library that is used for securing Kubernetes clusters configurations. The security policies are created based on CIS Kubernetes benchmark and rules defined in Kubesec.io.

REST API to access D&D 5th Edition SRD database

Multi source CVE/exploit parser.

Выпускная квалификационная работа (ВКР) магистра в LaTeX, оформленная в соответствии с нормоконтролем Севастопольского государственного университета в 2017 г.

[MIRROR] Common effort to get an official and automated gentoo base docker container

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

This is a setup for a Tor based shared web hosting server

A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

CyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩‍💻👨‍💻

Pretty vulnerable flask app..

An iOS Security assessment app for jailbroken iOS Devices.

Serverless plugin for securing your dependencies with Snyk

Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Kubernetes Native, Runtime Container Image Scanning

Hourly updated database of exploit and exploitation reports