1310 Open source projects that are alternatives of or similar to Xunfeng

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

分布式资产安全扫描核心管理系统(弱口令扫描，漏洞扫描)

🆕 The Multi-Tool Web Vulnerability Scanner.

All-in-one tool for managing vulnerability reports from AppSec pipelines

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Advanced vulnerability scanning with Nmap NSE

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

SEC分布式资产扫描系统

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

被动式漏洞扫描系统

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

NERVE Continuous Vulnerability Scanner

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

The Web Exploit Detector is a Node.js application used to detect possible infections, malicious code and suspicious files in web hosting environments

Web-based Source Code Vulnerability Scanner

Backend logic implementation for Vulnerability Management System

A high performance offensive security tool for reconnaissance and vulnerability scanning

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

The Correlated CVE Vulnerability And Threat Intelligence Database API

Web Application Security Scanner Framework

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Vulners Python API wrapper

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Exploitation Framework for Embedded Devices

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Web path scanner

Dradis Framework: Colllaboration and reporting for IT Security teams

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Advanced and easy to use penetration testing framework 💣🔎

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Hawkeye filesystem analysis tool

Cameradar hacks its way into RTSP videosurveillance cameras

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

Port scanning and domain utility.

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Network Vulnerability Scanner

🖖 Fast, modern, easy-to-use network scanner

Pentest: Subdomains enumeration tool for penetration testers.

Fast and customizable vulnerability scanner For JIRA written in Python

A static binary vulnerability scanner

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Scout - a Contactless Active Reconnaissance Tool

sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.

Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.

Zero-setup SSH-based scanner with extensive visualizations for Debian server inventory, policy compliance and vulnerabilities

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

🔐 Docker Container for Penetration Testing & Security