Clear ×

Vulnerabilities

25 repositories found

project-copacetic

project-copacetic

copacetic
Go AI analysis

Project Copacetic (copa) is a CLI tool for patching container image vulnerabilities directly without full image rebuilds, using vulnerability...

Production ready Niche use case
cncf compliance container-image
1.7k
121
18
19/wk
active
8/10 DevOps
six2dez

six2dez

reconftw
Shell AI analysis

reconFTW is an automated reconnaissance framework designed for bug bounty hunters and penetration testers to enumerate subdomains, perform security...

Production ready Single maintainer Niche use case
bug-bounty bugbounty bugbounty-tool
7.8k
1.2k
2
64/wk
recent
8/10 Security
ossf

ossf

cve-bin-tool
Python AI analysis

CVE Binary Tool is a free, open-source security scanner that identifies known vulnerabilities in binaries and software components by matching against...

Production ready Niche use case
cve cvss devsecops
1.7k
637
210
17/wk
active
8/10 Security
DependencyTrack

DependencyTrack

dependency-track
Java AI analysis

Dependency-Track is an OWASP-maintained Component Analysis platform that ingests Software Bill of Materials (SBOMs) to identify and mitigate supply...

Production ready Niche use case
appsec bill-of-materials bom
4k
775
1k
21/wk
active
8/10 Security
google

google

clusterfuzz
Python AI analysis

ClusterFuzz is a scalable fuzzing infrastructure used by Google to find security and stability issues in software, powering both internal Google...

Production ready Niche use case
fuzzing security stability
5.6k
620
90
4/wk
active
8/10 Security
Bearer

Bearer

bearer
Go AI analysis

Bearer is an open-source static application security testing (SAST) tool that scans source code to identify security vulnerabilities and privacy...

Production ready Niche use case
appsec code-quality compliance
2.7k
141
27
8/wk
active
7/10 Security
opencve

opencve

opencve
Python AI analysis

OpenCVE is a vulnerability intelligence platform that aggregates CVE data from multiple sources (MITRE, NVD, RedHat, etc.) and provides filtering,...

Production ready Niche use case
cve cybersecurity django
2.8k
331
99
7/wk
active
8/10 Security
trickest

trickest

cve
HTML AI analysis

CVE PoC is an automated aggregation repository that collects and organizes publicly available proof-of-concept exploits for CVEs, organized by year...

Production ready Niche use case
cve cve-poc exploit
7.9k
976
20
18/wk
active
7/10 Security
edoardottt

edoardottt

awesome-hacker-search-engines
Shell AI analysis

A curated collection of search engines and tools for security professionals conducting penetration testing, vulnerability assessments, and threat...

Production ready Niche use case
awesome awesome-list awesome-lists
10.9k
1k
9
23/wk
active
7/10 Security
pwndoc

pwndoc

pwndoc
JavaScript AI analysis

PwnDoc is a collaborative pentest reporting platform that streamlines the generation of customizable Word documents from security audit findings....

Production ready Single maintainer Niche use case
audit collaboration infosec
2.9k
511
118
6/wk
active
7/10 Security
anchore

anchore

grype
Go AI analysis

Grype is a vulnerability scanner that analyzes container images, filesystems, and SBOMs against known vulnerability databases. It serves DevOps...

Production ready Niche use case
container-image containers cyclonedx
12.5k
823
376
24/wk
active
8/10 DevOps
infoslack

infoslack

awesome-web-hacking
AI analysis

A curated list of resources for web application security education and penetration testing, including books, documentation, tools, cheat sheets,...

Beginner friendly Single maintainer Niche use case
appsec hacking hacking-tools
7k
1.3k
7
11/wk
active
7/10 Security
lirantal

lirantal

npq
JavaScript AI analysis

npq is a command-line tool that audits npm packages before installation by checking against CVE databases, analyzing package metadata (age,...

Production ready Beginner friendly Niche use case
appsec best-practices command-line-tool
1.8k
41
15
2/wk
active
7/10 Security
google

google

oss-fuzz
Shell AI analysis

OSS-Fuzz is a continuous fuzzing service that automatically discovers security vulnerabilities and stability bugs in open source software using...

Production ready Niche use case
fuzz-testing fuzzing oss-fuzz
12.4k
2.8k
707
12/wk
active
9/10 Security
RetireJS

RetireJS

retire.js
JavaScript AI analysis

Retire.js is a specialized security scanner that detects JavaScript libraries with known vulnerabilities in web and Node.js applications, addressing...

Production ready Beginner friendly Niche use case
build-tool chrome-extension firefox-extension
4.2k
439
3
4/wk
active
8/10 Security
ycdxsb

ycdxsb

PocOrExp_in_Github
Python AI analysis

This project automatically aggregates proof-of-concept (POC) and exploit (EXP) code from GitHub, indexed by CVE ID. It serves security researchers,...

Production ready Single maintainer Niche use case
cve exploit poc
1.2k
236
1/wk
active
7/10 Security
cve-search

cve-search

cve-search
Python AI analysis

cve-search is a specialized security tool that imports CVE and CPE data into MongoDB to enable fast, local vulnerability searches without exposing...

Production ready Niche use case
common-vulnerabilities cpe cve
2.6k
620
2/wk
active
8/10 Security
future-architect

future-architect

vuls
Go AI analysis

Vuls is an agent-less vulnerability scanner written in Go that detects security vulnerabilities across Linux, FreeBSD, Windows, macOS, containers,...

Production ready Niche use case
administrator cybersecurity freebsd
12.2k
1.2k
84
8/wk
active
8/10 Security
quay

quay

clair
Go AI analysis

Clair is a static analysis tool that scans OCI and Docker container images for known vulnerabilities, enabling security teams to assess container...

Production ready Niche use case
clair containers docker
11k
1.2k
56
4/wk
active
7/10 DevOps
snyk

snyk

cli
TypeScript AI analysis

Snyk CLI is a developer-focused security scanning tool that detects and monitors vulnerabilities across open-source dependencies, application code,...

Production ready Beginner friendly Niche use case
monitor security snyk
5.6k
687
131
2/wk
active
8/10 Security
presidentbeef

presidentbeef

brakeman
Ruby AI analysis

Brakeman is a static analysis security scanner specifically designed for Ruby on Rails applications, detecting vulnerabilities in Rails code without...

Production ready Beginner friendly Single maintainer Niche use case
brakeman rails ruby
7.3k
771
111
1/wk
recent
8/10 Security
jaeles-project

jaeles-project

jaeles
Go

Jaeles is a Go-based Web Application Scanner framework designed for security professionals and bug bounty hunters to build custom vulnerability...

Single maintainer Niche use case
bugbounty golang hacking
2.4k
334
32
recent
6/10 Security
bkerler

bkerler

exploit_me
C++ AI analysis

exploit_me is a deliberately vulnerable ARM/AARCH64 application designed as a CTF-style educational tutorial covering 29 exploitation techniques...

Beginner friendly Single maintainer Niche use case
arm ctf cybersecurity-education
1.1k
154
recent
7/10 Security
lirantal

lirantal

is-website-vulnerable
JavaScript AI analysis

is-website-vulnerable is a security scanning tool that detects publicly known vulnerabilities in a website's frontend JavaScript libraries by...

Production ready Beginner friendly Niche use case
hacktoberfest lighthouse nodejs
2k
127
1
recent
8/10 Security
FriendsOfPHP

FriendsOfPHP

security-advisories
PHP AI analysis

A centralized database of known security vulnerabilities in PHP packages and libraries, maintained as a YAML-based reference that integrates with...

Production ready Niche use case
composer packagist php
2.1k
322
2
recent
8/10 Security