Vulnerability Detection

59 projects

Showing 23 of 59 projects

dawnscannerRuby

A static analysis security scanner for Ruby web applications, supporting Rails, Sinatra, and Padrino frameworks.

#hanami#vulnerabilities#rails

Stars749

Forks84

Last commit2 years ago

PHPCS Security AuditPHP

A PHP_CodeSniffer ruleset that detects security vulnerabilities and weaknesses in PHP code, including Drupal 7.

#phpcs#php-security#drupal-security

Stars727

Forks79

Last commit3 years ago

Snyk Test ActionHTML

A collection of GitHub Actions for Snyk to check projects for vulnerabilities across multiple languages and tools.

#actions#container-security#snyk-integration

Stars640

Forks194

Last commit7 days ago

Insider CLIGo

A static application security testing (SAST) CLI tool that scans source code for OWASP Top 10 vulnerabilities across multiple programming languages.

#multi-language#owasp#ios-security

Stars552

Forks80

Last commit4 years ago

IntrospyJava

A blackbox security profiling tool for Android that hooks and analyzes security-sensitive APIs at runtime.

#mobile-security#blackbox-testing#vulnerability-detection

Stars488

Forks141

Last commit12 years ago

SkylosPython

Open-source static analysis tool for Python, TypeScript, and Go that detects dead code, security vulnerabilities, and AI-generated regressions.

#security-scanning#ai-code-review#vulnerability-detection

A Visual Studio extension for real-time .NET secure code analysis that displays vulnerabilities as compiler warnings.

#secure-coding#static-code-analysis#vulnerability-detection

Stars448

Forks78

Last commit3 years ago

SUPERRust

A secure, extensible command-line Android APK vulnerability analyzer written in Rust for automated security testing.

#mobile-security#vulnerabilities#analyzer

Stars428

Forks57

Last commit5 years ago

DIFUZEC++

A fuzzer for Linux kernel drivers that combines interface recovery via LLVM analysis with a fuzzing engine to find security vulnerabilities.

#vulnerability-discovery#embedded-security#llvm-analysis

Stars386

Forks85

Last commit4 years ago

ParsePHP

A static security scanner for PHP code that identifies potential vulnerabilities without executing the code.

#command-line-tool#vulnerability-detection#security

Stars382

Forks41

Last commit7 years ago

ProgpilotPHP

A static application security testing (SAST) tool for PHP that detects vulnerabilities like XSS through taint analysis.

#taint-analysis#static-code-analysis#code-security

Stars362

Forks64

Last commit9 months ago

HawkeyeJavaScript

A security scanning CLI tool that detects vulnerabilities, secrets, and outdated dependencies across multiple programming languages.

#multi-language#pre-commit-hooks#secret-detection

Stars362

Forks86

Last commit4 years ago

JAADASJava

A static analysis tool for Android applications that detects security vulnerabilities through inter-procedure and intra-procedure analysis.

#soot-framework#vulnerability#taint-analysis

Stars352

Forks107

Last commit9 years ago

vuln-regex-detectorPerl

A tool to scan projects for regexes vulnerable to catastrophic backtracking (REDOS) through static extraction, detection, and validation.

#programming-security#regex-security#security-scanning

A trustworthy ReDoS (Regular Expression Denial of Service) checker for identifying vulnerable regex patterns.

#vulnerability#redos#performance-security

A static and symbolic analysis tool for finding memory safety bugs in browser code and other software.

#memory-safety#vulnerability-detection#bug-finding

Stars236

Forks42

Last commit4 years ago

roslyn-security-guardC#

Roslyn analyzers for detecting security vulnerabilities in .NET applications during development.

#ide-integration#csharp#vulnerability-detection

A browser emulation tool that detects exploits targeting browser and browser plugin vulnerabilities by analyzing various file types.

#pdf-analysis#network-capture-analysis#security-analysis

Stars169

Forks65

Last commit11 years ago

GraphQLerPython

A dependency-aware GraphQL API fuzzing tool that automatically generates and executes security tests based on schema introspection.

#api#graphql#api-testing-framework

Stars163

Forks16

Last commit4 days ago

pgspotPython

A static analysis tool that spots security vulnerabilities in PostgreSQL extension scripts and SQL code.

#python-tool#vulnerability-detection#security

Stars135

Forks10

Last commit4 days ago

WitcherC

A framework for using AFL to fuzz web applications and detect SQL/command injection vulnerabilities.

#sql-injection#web-security#command-injection

Stars109

Forks21

Last commit2 years ago

Detection Engineering with Splunk

A collection of Splunk SPL queries for detecting vulnerability exploits, malware, and MITRE ATT&CK TTPs in security logs.

#text4shell#vulnerability#splunk

Stars69

Forks10

Last commit2 years ago

tealerPython

A static analyzer for Teal (Algorand Smart Contracts) that detects vulnerabilities and visualizes contract structure.

#smart-contracts#control-flow-graph#blockchain-security

Stars63

Forks13

Last commit2 years ago

PreviousPage 2 of 2

Related Tags

Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a project Star on GitHub