GVM-Docker
vulscan
| GVM-Docker | vulscan | |
|---|---|---|
| 3 | 3 | |
| 246 | 3,328 | |
| 0.0% | 1.7% | |
| 2.6 | 3.4 | |
| 5 months ago | 10 months ago | |
| XSLT | Lua | |
| MIT License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
GVM-Docker
-
Free Vulnerability Tool for on prem infrastructure
Could use OpenVAS in a VM or using docker.
-
Acrobat security vulnerabilities
For a really easy way to try out OpenVAS, try https://github.com/Secure-Compliance-Solutions-LLC/GVM-Docker - you can have it up and running in like 30 minutes.
-
unattended install of openvas9
I don't know what OpenVAS installer you are using but OpenVAS 9 is very outdated. I would advise using a newer version. I help maintain a docker container that has the latest version of OpenVAS/GVM. You can check it out at: GVM-Docker
vulscan
-
Scanning ports and finding network vulnerabilities using nmap
Few people know that nmap is not just for reconnaissance work. Among other things, it allows finding vulnerabilities based on scripts prepared by the community and the tool's developers. Examples include nmap-vulners, vulscan or already prepared scripts that are installed along with nmap.
- Using Sn1per, what next?
- Windows Volnurability Report
What are some alternatives?
openvas - Containers for running the Greenbone Vulnerability Manager. Run as a single container with all services or separate single applications containers via docker-compose.
nmap-vulners - NSE script based on Vulners.com API
openvas-scanner - This repository contains the scanner component for Greenbone Community Edition.
Reverse-Engineering-Tutorial - A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
vulnerablecode - A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
openscap - NIST Certified SCAP 1.2 toolkit
haproxy-auth-request - auth-request allows you to add access control to your HTTP services based on a subrequest to a configured HAProxy backend.
crossfeed - External monitoring for organization assets
h4cker - This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
PatrowlManager - PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Nginx-Lua-Anti-DDoS - A Anti-DDoS script to protect Nginx web servers using Lua with a HTML Javascript based authentication puzzle inspired by Cloudflare I am under attack mode an Anti-DDoS authentication page protect yourself from every attack type All Layer 7 Attacks Mitigating Historic Attacks DoS DoS Implications DDoS All Brute Force Attacks Zero day exploits Social Engineering Rainbow Tables Password Cracking Tools Password Lists Dictionary Attacks Time Delay Any Hosting Provider Any CMS or Custom Website Unlimited Attempt Frequency Search Attacks HTTP Basic Authentication HTTP Digest Authentication HTML Form Based Authentication Mask Attacks Rule-Based Search Attacks Combinator Attacks Botnet Attacks Unauthorized IPs IP Whitelisting Bruter THC Hydra John the Ripper Brutus Ophcrack unauthorized logins Injection Broken Authentication and Session Management Sensitive Data Exposure XML External Entities (XXE) Broken Access Control Security Misconfiguration Cross-Site Scripting (XSS) Insecure Deserializati