A command-line tool to quickly analyze all IPs in a file and see which ones have open ports/ vulnerabilities. Can also be fed data from stdin to be used in a data pipeline.
Vulnerability Scanning Tools on the main website for The OWASP
Run our automated penetration testing and vulnerability assessment to protect your web application from hackers.
Vulcan Cyber has you covered across the full cyber risk management lifecycle so you can go beyond vulnerability scanning to understand, and actually reduce, your cyber risk.
this repository is a docker containing some "XSS vulnerability" challenges and bypass examples
Open-source vulnerability assessment and pentesting management platform
A work-in-progress towards a free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities.
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Fast and customizable vulnerability scanner based on simple YAML based DSL.
VAPT (vulnerability assessment and penetration testing) automation and reporting platform.
OpenCVE (formerly known as Saucs) is a platform that alerts you about new vulnerabilities related to the CVE list.
NERVE is a vulnerability scanner tailored to find low-hanging fruit level vulnerabilities, in specific application configurations, network services, and unpatched services.
It is not a replacement for Qualys, Nessus, or OpenVAS. It does not do authenticated scans, and operates in black-box mode only.
NERVE will do "some" CVE checks, but this is primarily coming from version fingerprinting.
All-in-one tool for managing vulnerability reports
Web application vulnerability scanner
Mixeway is an OpenSource software that is meant to simplify the process of security assurance of projects which are implemented using CICD procedures. Mixawey is not another vulnerability scanning software – it is a security orchestration tool.
🔎 shodansploit > v1.3.0
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Automate Pentest Tool
A pretty sweet vulnerability scanner
Basic script to detect vulnerabilities into a PHP source code using statical analysis, based on regex