Top 20 Python Vulnerability Projects

Vulnerabilities

• Add a project

1. clusterfuzz

   1 4 5,454 9.6 Python

   Scalable fuzzing infrastructure.

   

   Project mention: The Rise of 'Vibe Hacking' Is the Next AI Nightmare | news.ycombinator.com | 2025-06-05

2. Sevalla

   sevalla.com featured

   Deploy and host your apps and databases, now with $50 credit! Sevalla is the PaaS you have been looking for! Advanced deployment pipelines, usage-based pricing, preview apps, templates, human support by developers, and much more!

   

3. kube-hunter

   2 10 4,879 4.5 Python

   Hunt for security weaknesses in Kubernetes clusters

   

4. cve-search

   3 1 2,516 5.4 Python

   cve-search - a tool to perform local searches for known vulnerabilities (by cve-search)

   

5. opencve

   4 21 2,237 8.9 Python

   Vulnerability Intelligence Platform

   

6. rapidscan

   5 1 1,912 4.1 Python

   :new: The Multi-Tool Web Vulnerability Scanner.

   

7. cve-bin-tool

   6 13 1,496 9.8 Python

   The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

   

   Project mention: My Goals Working On Open Source | dev.to | 2024-12-10

   So far I think I've been doing pretty well. While the scope of my contributions has varied, I've been able to work on a few projects - some larger than others, but all of them being software that people actually use (as opposed to someone's side project): cve-bin-tool, libplanet, ByteChef, Ghostfolio, and Mattermost.

8. dagda

   7 4 1,201 0.0 Python

   a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

   

9. InfluxDB

   www.influxdata.com featured

   InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

   

10. PocOrExp_in_Github

    8 1 1,071 10.0 Python

    Automatically Collect POC or EXP from GitHub by CVE ID.

    

11. vulnix

    9 4 607 6.9 Python

    Vulnerability (CVE) scanner for Nix/NixOS [maintainer=@henrirosten]

    

12. vulnerable-apps

    10 1 218 10.0 Python

    

13. deadshot

    11 2 191 0.0 Python

    Deadshot is a Github pull request scanner to identify sensitive data being committed to a repository

    

14. SSVC

    12 1 163 9.7 Python

    Stakeholder-Specific Vulnerability Categorization

    

15. scancode.io

    13 1 148 9.3 Python

    ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

    

16. jake

    14 1 124 2.8 Python

    Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.

    

17. ochrona-cli

    15 2 51 0.6 Python

    A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

    

18. pip-rating

    16 1 30 9.0 Python

    Check the health of your project's requirements and get a score for each dependency.

    

19. bogrod

    17 3 18 5.9 Python

    Manage SBOM and VEX like source code

    

    Project mention: Show HN: Manage SBOMs like source code | news.ycombinator.com | 2024-09-07

20. SLOOTH-Security-Vulnerability-Search-and-Management

    18 1 5 3.4 Python

    CS50 Final Project. Utilizing the python NVD API wrapper and REST API, Slooth performs queries specifically for Common Vulnerabilities and Exposures (CVEs), providing a unique identifier known as the CVE ID for stakeholders to discuss and research specific exploits.

    

21. pygrype

    19 1 3 7.0 Python

    A python wrapper for Anchore Grype

    

22. HackTheBox

    20 2 3 9.4 Python

    This repository contains walkthroughs of Hack The Box machines I have completed (by sonyahack1)

    

    Project mention: HTB - Bastion (Windows) | dev.to | 2025-08-11

    Link to the writeup here: 🔗 https://github.com/sonyahack1/HackTheBox/blob/main/HTB_Bastion_Windows/HTB_Bastion_Windows_01.08.2025.md

23. SaaSHub

    www.saashub.com featured

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    

Python Vulnerabilities related posts

• The Rise of 'Vibe Hacking' Is the Next AI Nightmare

  1 project | news.ycombinator.com | 5 Jun 2025

• Show HN: Manage SBOMs like source code

  1 project | news.ycombinator.com | 7 Sep 2024

• Show HN: Manage SBOM vulnerabilities analysis like source code

  1 project | news.ycombinator.com | 8 Jun 2023

• how to stay up to date with new CVEs?

  1 project | /r/cybersecurity | 25 May 2023

• Where do you get your information regarding new vulnerabilities and security risks?

  2 projects | /r/sysadmin | 9 May 2023

• Introducing Pezzo: Open-source AI Development Toolkit 🚀

  2 projects | /r/node | 5 May 2023

• PaperCut MF/NG vulnerability

  1 project | /r/sysadmin | 20 Apr 2023
• A note from our sponsor - SaaSHub
  www.saashub.com | 2 Sep 2025

  SaaSHub helps you find the best software and product alternatives Learn more →

Index

Sponsored

Deploy and host your apps and databases, now with $50 credit!

Sevalla is the PaaS you have been looking for! Advanced deployment pipelines, usage-based pricing, preview apps, templates, human support by developers, and much more!

sevalla.com

Do not miss the trending Python projects with our weekly report!