600 Open source projects that are alternatives of or similar to Nerve

Application and Service Fingerprinting

A static analysis tool for security

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

Custom memory allocator that helps discover reads from uninitialized memory

memory search and patch tool on debuggable apk without root & ndk

Safety checks your installed dependencies for known security vulnerabilities

Find secrets and passwords in container images and file systems

Fuzz your Rust code with Google-developed Honggfuzz !

Awesome Java Security Resources 🕶☕🔐

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

🔐 Shim to easily install OWASP dependency-check-cli into Python projects

a useful utility for android app security testing

Vulnerability database and package search for sources such as OSV, NVD, GitHub and npm.

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

🎩 [penetration testing Book], Kali Magic, Cryptography, Hash Crack, Botnet, Rootkit, Malware, Spyware, Python, Go, C|EH.

Wazuh - Tools for packages creation

Advanced file format fuzzer based-on deep neural language models.

WireBug is a toolset for Voice-over-IP penetration testing

T-XPLOITER is a Perl program for detect and (even) exploit website(s). Why the name is T-XPLOITER ? T means Triple, XPLOITER means Exploiter. This program has 3 features and functions to detect and (even) exploit website(s), just check it out :).

The knife of the Admin & Security auditor

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.

Check CPAN modules for known security vulnerabilities

Memory modification tool for re-signed ipa supports iOS apps running on iPhone and Apple Silicon Mac without jailbreaking.

Gets in the way of your victim's traffic and out of yours

Kubescape is a K8s open-source tool providing a multi-cloud K8s single pane of glass, including risk analysis, security compliance, RBAC visualizer and image vulnerabilities scanning.

Advanced Vulnerability Scanner Tool

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

A simple program written in bash that contains basic Linux network tools, information gathering tools and scanning tools.

OWASP Zed Attack Proxy project landing page.

图形化漏洞利用集成工具

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Fast and customizable vulnerability scanner For JIRA written in Python

IAST 灰盒扫描工具

SIde-Channel Analysis toolKit: embedded security evaluation tools

(Deprecated) Submit all images in your Kubernetes cluster to Anchore for a vulnerability check and check your configuration with kubeaudit

Wazuh - Puppet module

A static binary vulnerability scanner

JAW: A Graph-based Security Analysis Framework for JavaScript and Client-side CSRF

Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading

Automated XSS Finder

Toolset for detecting reflected xss in websites

Harbor in Kubernetes

Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.

See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)

Trojan 🐍 (keylogger, take screenshots, open your webcam) 🔓

Remote command execution vulnerability scanner for Log4j.

Post-Exploitation 😎 module for Penetration Tester and Hackers.

Backend logic implementation for Vulnerability Management System

Smart contract vulnerability detection using graph neural network (DR-GCN).

FUNDED is a novel learning framework for building vulnerability detection models.

Trivy based vulnerability management service

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!

🔐 Vulnerability remediation scoring system

Central Processing Unit Information Gathering Tool

Hourly updated database of exploit and exploitation reports

Microsoft Azure Exploitation Framework