Vulnerability Assessment
Showing 36 of 43 projects
A comprehensive collection of security testing wordlists and payloads for penetration testers and security researchers.
An open-source penetration testing framework for developing and executing exploit code against remote targets.
An open-source penetration testing framework for developing and executing exploit code against remote targets.
An open-source penetration testing tool that automates SQL injection detection and database takeover.
A fast, customizable vulnerability scanner with a YAML-based DSL, powered by a global security community.
A curated collection of penetration testing tools, resources, and educational materials for offensive cybersecurity professionals.
A comprehensive collection of hacking tools, resources, and references for learning and practicing ethical hacking and penetration testing.
An open-source exploitation framework dedicated to embedded devices for penetration testing and vulnerability assessment.
A free and open-source network discovery and security auditing tool for mapping networks and identifying services.
A penetration testing framework that exploits web browsers as beachheads for client-side attacks.
A free, open-source WordPress security scanner for professionals and site maintainers to test website vulnerabilities.
A comprehensive, curated collection of tools, research, and resources for Android application security analysis and penetration testing.
A comprehensive, curated collection of tools, research, and resources for Android application security analysis and reverse engineering.
A command-line tool for red-teaming and vulnerability scanning of large language models (LLMs).
An open-source adversary emulation platform that simulates malware attacks to test and improve network security defenses.
A curated list of resources for learning and practicing web application security, including tools, books, courses, and vulnerable labs.
A comprehensive cheat sheet and tool collection for mobile application penetration testing, mapped to OWASP Mobile Top 10 risks.
A security testing framework for Android that identifies vulnerabilities by interacting with apps, IPC endpoints, and the OS.
A curated collection of cheat sheets and resources for penetration testing and security assessments.
An Nmap NSE script that transforms nmap into a vulnerability scanner using offline vulnerability databases.
A high-performance offensive security tool for reconnaissance, vulnerability scanning, and information gathering.
An automated Python tool for auditing and exploiting NoSQL database vulnerabilities and web application injection attacks.
A Python tool for auditing SSH server configurations, security, and compatibility.
Find origin servers of websites behind CloudFlare or CloudFront using Censys internet-wide scan data.
An automated system for emulation and dynamic security analysis of Linux-based embedded firmware.
A curated collection of tools, data, literature, and resources for Industrial Control System (ICS) and SCADA security.
A virtual machine for Android application security assessment, reverse engineering, and malware analysis.
A curated collection of Android exploits, hacking tools, and resources for security research and penetration testing.
A modular Python framework for auditing and penetration testing of IoT devices, supporting WiFi, NFC, and BLE technologies.
A comprehensive checklist for designing, testing, and releasing secure Android applications based on OWASP standards.
A curated list of security resources for penetration testing and vulnerability assessment of VoIP, WebRTC, and VoLTE systems.
An exhaustive security checklist for Node.js web services, focused on Express and Hapi frameworks.
A bug hunting tool that scans websites for exposed .git repositories and dumps their contents for security analysis.
A toolkit for security testing IoT devices using protocols like CoAP, MQTT, DTLS, and HTTP/2.
A Python tool that actively fingerprints embedded TCP/IP stacks on network devices to identify vulnerable implementations.
A Ruby script that fingerprints remote applications and third-party scripts to identify their versions for security assessment.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.