Vulnerability Scanner
Showing 25 of 25 projects
An open-source penetration testing tool that automates SQL injection detection and database takeover.
A fast, customizable vulnerability scanner with a YAML-based DSL, powered by a global security community.
A free, open-source web application security scanner for finding vulnerabilities during development and testing.
A vulnerability scanner for container images, filesystems, and SBOMs to detect known security issues.
A vulnerability scanner for container images, filesystems, and SBOMs to detect known security issues.
Open-source vulnerability static analysis tool for container images (OCI/Docker) via API-based indexing and matching.
A general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities.
An automated penetration testing tool that detects and exploits command injection vulnerabilities in web applications.
An open-source web application security scanner that identifies and exploits 200+ vulnerabilities for developers and penetration testers.
A high-performance offensive security tool for reconnaissance, vulnerability scanning, and information gathering.
A comprehensive offensive web application penetration testing framework with 108 modules covering reconnaissance to vulnerability analysis.
A comprehensive offensive web application penetration testing framework with 108 modules covering reconnaissance to vulnerability analysis.
Open-source supply chain security scanner that automatically detects vulnerabilities like Log4Shell in dependencies and notifies via GitHub pull requests.
A static analysis tool that detects Common Weakness Enumerations (CWEs) in binary executables across multiple CPU architectures.
An advanced Cross-Site Request Forgery (CSRF) audit and exploitation toolkit for security testing.
An efficient Android vulnerability scanner that finds security issues and missing best practices in APK files.
A modular vulnerability scanner that checks website security and automatically generates easy-to-read reports for organizations.
A professional-grade web security scanner for penetration testing with intelligent, context-aware scanning and proof-based vulnerability detection.
A security tool that identifies DTDs in filesystem snapshots and generates XXE payloads using those local DTDs.
A Python tool for automated scanning and detection of SSL/TLS vulnerabilities like Heartbleed, POODLE, and FREAK.
A security tool that scans for Windows accessibility tools backdoors via automated RDP sessions.
An automated security testing toolkit for GraphQL endpoints that discovers, analyzes, and scores vulnerabilities.
An automated IAST fuzzer for discovering vulnerabilities in CakePHP web applications with minimal false positives.
A tool that generates vulnerable web applications for security testing and education, supporting multiple attack modules.
A security tool for enumerating and exploiting pipeline vulnerabilities in GitHub Actions workflows and self-hosted runners.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.