#Scanning
Showing 60 of 69 repositories tagged #scanning, ranked by stars
Find, verify, and analyze leaked credentials
๐ค The Modern Port Scanner ๐ค
ไธๆฌพๅ ็ฝ็ปผๅๆซๆๅทฅๅ ท๏ผๆนไพฟไธ้ฎ่ชๅจๅใๅ จๆนไฝๆผๆซๆซๆใ(An intranet comprehensive scanning tool, enabling one-click automated, all-round vulnerability scanning)
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
RTAB-Map library and standalone application
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Detect and validate 500+ types of hardcoded secrets with advanced checks. Use it as a pre-commit hook, GitHub Action, or CLI for proactive secret detection and security.
Terminal Network scanner & diagnostic tool with modern TUI
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.
Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.
Detect leaked secrets + live validation. Map blast radius across your stack. Revoke fast. 950+ rules.
AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.
A compat library for Bluetooth Low Energy scanning on Android.
A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows.
ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
Modular file scanning/analysis framework
Tiny lib to scan SQL rows directly to structs, slices, and primitive types
Fast and powerful Swift string scanning made simple
Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitation of API endpoints and secrets committed to workspaces, collections, requests, users and teams. Porch Pirate can be used as a client or be incorporated into your own applications.
External monitoring for organization assets
This GitHub Action runs Checkov against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.
Scientific analysis of nanoscale materials imaging data
:camera: Computer-Vision Demos
Diablo ~ Hacking / Pentesting & Reporting
Greenbone Vulnerability Management Docker Image with OpenVAS
AutoAR is an automated security reconnaissance tool, ASM and Discord bot for bug bounty hunters and penetration testers. It automates gathering subdomains, scanning ports, detecting technologies, mapping GitHub repositories, fuzzing, testing vulnerabilities, and AI analysis.
Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.
Deadshot is a Github pull request scanner to identify sensitive data being committed to a repository
Nuclei scripts created by @rxerium for zero days / actively exploited vulnerabilities.
Anteater - CI/CD Gate Check Framework
PAKURI has been merged with Python and launched as a new project, PAKURI-THON.
Practical labs, notes, and reports for CEH v13 modules โ covering web hacking, network pentesting, malware analysis, social engineering, and security tool usage.
A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Easy-to-use Flutter document scanner and data extraction plugin
A fully self-contained Nmap like parallel port scanning module in pure Golang that supports SYN-ACK (Silent Scans)
Quick network scanner library. https://crates.io/crates/qscan
Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.
ScanPro - NMap Scanning Scripts ~ Network Mapper
Awesome Fingerprint Identify for react-native (android only)
Easy-to-use React Native document scanner and data extraction library
Metateta Automated Tool For Scanning And Exploiting Network Protocols Using Metasploit
esp8266 deauther with captive portal and update GUI
Fast and reliable Flutter barcode scanner plugin
DragonMS is Tools for ddos, scanner, tracker, payload generator msfvenom and scraping
GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.
This GitHub Action runs Bridgecrew against infrastructure-as-code, open source packages, container images, and CI/CD configurations to identify misconfigurations, vulnerabilities, and license compliance issues.
Burp Suite extension to passively scan for applications revealing server error messages
Query IP address network information in Go
:skull: A versatile hacking framework that consolidates tools for OSINT, penetration testing, networking, auditing, and more, providing a comprehensive suite for cybersecurity professionals. Designed for flexibility and ease of use, it streamlines security assessments and vulnerability analysis.
A collection of scripts, documentation and HTML-Sites that can be used for penetration-testing
Gixposed is a powerful command-line tool designed to search the commit history of Git repositories for sensitive information, such as API keys and access tokens. Its purpose is to help developers and security professionals quickly identify and remediate exposed sensitive informations in their codebases.
Stop leaks. Safeguard your secrets with GitGuardian. GitGuardian actively prevents accidental exposure of sensitive information in your code, allowing you to code confidently and maintain the integrity of your data.
Burp extension to passively scan for applications revealing software version numbers
Tracks a range of Microsoft owned ASNs and publishes a daily release containing a list of IPv4 and IPv6 address in CIDR notation.
X9 a tool to create URLs with many parameter
Ranger Reloaded is a Python script that can be used to scan alive hosts on your network and check for vulnerable open ports.