165 Open source projects that are alternatives of or similar to moodlescan

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Open-Source Security Architecture | 开源安全架构

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

A tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, credentials sent in-the-clear, and shellshock attacks. Currently supports live monitoring and network capture (pcap) scanning.

Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

A Python library for the MythX smart contract security analysis platform

🚗Uber, at your fingertips

Safety checks your installed dependencies for known security vulnerabilities

This is the new version of dirb in python

☠️ Call of Duty - Vulnerabilities and proof-of-concepts

Automatic SQL injection with Charles and sqlmap api

Command line tool for testing CRLF injection on a list of domains.

三方依赖库扫描系统

Local Exploit for Meltdown

The official PHP SDK for Shieldfy

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

HackerOne "in scope" domains

Exploit Pack -The next generation exploit framework

CVE-2017-5693 Denial of service vulnerability in Puma 6 modems

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

hacker, ready for more of our story ! 🚀

Identify vulnerabilities in running containers, images, hosts and repositories

Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).

The project is using laravel 5.4 and adminlte

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

Static code analysis tool based on Elasticsearch

kunpeng是一个Golang编写的开源POC框架/库，以动态链接库的形式提供各种语言调用，通过此项目可快速开发漏洞检测类的系统。

Some of my public exploits

Ninjaberry: Raspberry Pi UI for @bettercap

syzkaller is an unsupervised coverage-guided kernel fuzzer

Contains Attack labs

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Mikrotik RouterOS (6.x < 6.38.5) exploit kit. Reverse engineered from the "Vault 7" WikiLeaks publication.

mirror of gera's insecure programming examples | http://community.coresecurity.com/~gera/InsecureProgramming/

Command-line tool for generating recovery codes for Hikvision IP Cameras

A static analysis security vulnerability scanner for Ruby on Rails applications

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715)

A fast TCP port scanner

🎯 Command Injection Payload List

🔐 Security advisories as a simple composer exclusion list, updated daily

Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem

WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.

A tool to update your project's dependencies on GitHub. Runs on pyup.io, comes with a command line interface.

Exploit management framework

Tracking CVEs for the linux Kernel

Sandfly Security Agentless Compromise and Intrusion Detection System For Linux

Find interesting and potentially hazardous commits in git projects

Checklist of security precautions for Ruby on Rails applications.

SSL and TLS protocol test suite and fuzzer

Vulnogram is a tool for creating and editing CVE information in CVE JSON format

bWAPP latest modified for PHP7

Tool for breaking into web applications.

收集网络上公开的漏洞扫描器的白皮书。

Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告

ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together

Python script that collects SSL/TLS information from hosts