#Security-vulnerability
Showing 52 of 52 repositories tagged #security-vulnerability, ranked by stars
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
A static analysis security vulnerability scanner for Ruby on Rails applications
syzkaller is an unsupervised coverage-guided kernel fuzzer
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
OWASP Web Application Security Testing Checklist
Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.
Checklist of security precautions for Ruby on Rails applications.
Subdomain takeover vulnerability checker
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
RockYou2021.txt is a MASSIVE WORDLIST compiled of various other wordlists. RockYou2021.txt DOES NOT CONTAIN USER:PASS logins!
Open-Source Security Architecture | 开源安全架构
Automatic SQL injection with Charles and sqlmap api
Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
SSL and TLS protocol test suite and fuzzer
Pen Test Report Generation and Assessment Collaboration
A Terminal UI for browsing security vulnerabilities (CVEs)
Hacker, ready for more of our story ! 🚀
HackerOne "in scope" domains
A tool to update your project's dependencies on GitHub. Runs on pyup.io, comes with a command line interface.
Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together
Welcome Cybersecurity's World. An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources in Cybersecurity.
Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
one-stop resource for all things offensive security.
Vulnerable Banking Suite
Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies
A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.
一个集合了多种语言的实战化Web靶场 | A practical Web shooting range that integrates multiple languages
FPGA-based LPC bus sniffing tool for Lattice iCEstick Evaluation Kit
Mikrotik RouterOS (6.x < 6.38.5) exploit kit. Reverse engineered from the "Vault 7" WikiLeaks publication.
Application with SQL Injection vulnerability and possible privilege escalation. Free vulnerable app for ethical hacking / penetration testing training.
This repository contains 130 malware and ransomware samples for research and analysis purposes.
Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.
Compiles a json dataset using public sources that contains properties to aid in the detection and mitigation of over 1000 variants of ransomware.
An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about DevSecOps in Cybersecurity.
Keycloak security scanner
WEB SQLi Injection DB Dumper DATA Hacking Tool
Command-line tool for generating recovery codes for Hikvision IP Cameras
Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ansible and docker? :whale: :shield: :lock:
grapX will iterate through the URLs and grep the endpoints with all possible extensions.
Handshake cracker
🔐 Welcome to Hack-Academia, your ultimate resource hub for all things 🖥️ hacking, 🔧 pentesting, and 🛡️ security research. Whether you are a 🌱 beginner looking to explore the world of cybersecurity or a 🧑💻 seasoned professional seeking cutting-edge techniques and insights, Hack-Academia is here to empower you. ⚡
An ongoing & curated collection of awesome software best practices and remediation techniques, libraries and frameworks, E-books and videos, Technical guidelines and important resources about Threat Detection & Hunting.
The purpose of this repo is to list all the related Research Papers focused on Smart-contracts security topics. As well as listing all the encountered smart-contracts defects with a summary description. 🛡️
Static analysis tool for Hyperledger Frabric smart contracts written in Go.
Pentesting report template for the masses
Fuzz testing framework for network protocols.
my write up about ctf
Every Solution to the Openzeppelin's Ethernaut wargame