Vulnerabilities

Open-source projects categorized as Vulnerabilities

Top 23 Vulnerability Open-Source Projects

  • vuls

    Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

  • clair

    Vulnerability Static Analysis for Containers

    Project mention: I looked through attacks in my access logs. Here's what I found | news.ycombinator.com | 2024-01-28

    Besides pointing pentester tools like metasploit at yourself, there are some nice scanners out there.

    https://github.com/quay/clair

    https://github.com/anchore/grype/

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  • oss-fuzz

    OSS-Fuzz - continuous fuzzing for open source software.

    Project mention: Ask HN: Any Good Fuzzer for gRPC? | news.ycombinator.com | 2024-03-21

    Have you tried Googles grpc fuzzer?

    https://github.com/google/oss-fuzz/blob/master/projects/grpc...

  • grype

    A vulnerability scanner for container images and filesystems

    Project mention: Suas imagens de container não estão seguras! | dev.to | 2024-03-20
  • Brakeman

    A static analysis security vulnerability scanner for Ruby on Rails applications

    Project mention: First commits in a Ruby on Rails app | dev.to | 2024-01-17

    Brakeman - “Brakeman detects security vulnerabilities in Ruby on Rails applications via static analysis”

  • awesome-hacker-search-engines

    A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

    Project mention: Awesome Hacker Search Engines | /r/tech | 2023-04-11
  • cve

    Gather and update all available and newest CVEs with their PoC.

    Project mention: Strange subdomain found during nmap scan | /r/cybersecurity | 2023-12-06

    Did you try using https://trickest.com?

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  • awesome-web-hacking

    A list of web application security

  • clusterfuzz

    Scalable fuzzing infrastructure.

    Project mention: Fuzzing Ladybird with tools from Google Project Zero | news.ycombinator.com | 2024-03-16

    https://github.com/google/clusterfuzz

    At least Chromium has integrated multiple different fuzzers into their regular development workflow and found lots of bugs even before going public.

  • reconftw

    reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

    Project mention: Automated recognition frameworks? | /r/bugbounty | 2023-06-23
  • cli

    Snyk CLI scans and monitors your projects for security vulnerabilities. (by snyk)

    Project mention: 6 Tools To Help Keep Your Dependencies And Code More Secure | dev.to | 2024-03-18

    Snyk

  • kube-hunter

    Hunt for security weaknesses in Kubernetes clusters

  • CDK

    📦 Make security testing of K8s, Docker, and Containerd easier.

  • Retire.js

    scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

  • awesome-nodejs-security

    Awesome Node.js Security resources

    Project mention: Using insecure npm package manager defaults to steal your macOS keyboard shortcuts | dev.to | 2023-06-29

    Many other JavaScript and Node.js security incidents are curated on the Awesome Node.js Security repository.

  • HackSysExtremeVulnerableDriver

    HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux

  • dependency-track

    Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

    Project mention: Dependency-Track | news.ycombinator.com | 2023-10-27
  • Fuzzing101

    An step by step fuzzing tutorial. A GitHub Security Lab initiative

    Project mention: Gaining kernel code execution on an MTE-enabled Pixel 8 | news.ycombinator.com | 2024-03-18

    This work comes from GitHub's Security Lab https://securitylab.github.com/

  • jaeles

    The Swiss Army knife for automated Web Application Testing

  • SensioLabs Security Check

    A database of PHP security advisories

    Project mention: PHP libraries and tools | dev.to | 2023-10-18

    Local PHP Security Checker: PHP security vulnerabilities checker

  • pwndoc

    Pentest Report Generator

    Project mention: sysreptor alternatives - writehat, Serpico, ReportGen, and pwndoc | libhunt.com/r/sysreptor | 2023-05-02
  • is-website-vulnerable

    finds publicly known security vulnerabilities in a website's frontend JavaScript libraries

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2024-03-21.

Vulnerabilities related posts

Index

What are some of the best open-source Vulnerability projects? This list will help you:

Project Stars
1 vuls 10,629
2 clair 9,985
3 oss-fuzz 9,598
4 grype 7,440
5 Brakeman 6,877
6 awesome-hacker-search-engines 6,552
7 cve 5,984
8 awesome-web-hacking 5,379
9 clusterfuzz 5,178
10 reconftw 5,174
11 cli 4,731
12 kube-hunter 4,591
13 CDK 3,581
14 Retire.js 3,488
15 awesome-nodejs-security 2,555
16 HackSysExtremeVulnerableDriver 2,299
17 dependency-track 2,245
18 cve-search 2,183
19 Fuzzing101 2,178
20 jaeles 2,055
21 SensioLabs Security Check 2,004
22 pwndoc 1,986
23 is-website-vulnerable 1,896
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com