#Vulnerability
Showing 60 of 264 repositories tagged #vulnerability, ranked by stars
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
This repository is maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), AI security, vulnerability research, exploit development, reverse engineering, and more. 🔥 Also check: https://hackertraining.org
SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.
Source code for Hacker101.com - a free online web and mobile security class.
A vulnerability scanner for container images and filesystems
一款长亭自研的完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Gather and update all available and newest CVEs with their PoC.
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
A list of web application security
All about bug bounty (bypasses, payloads, and etc)
Open Source Vulnerability Management Platform
A phone number can reveal whether a device is active, in standby or offline (and more). This PoC demonstrates how delivery receipts + RTT timing leak sensitive device-activity patterns. (WhatsApp / Signal)
This repository contains the scanner component for Greenbone Community Edition.
A full-stack AI Red Teaming platform securing AI ecosystems via OpenClaw Security Scan, Agent Scan, Skills Scan, MCP scan, AI Infra scan and LLM jailbreak evaluation.
Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, IPInfo, Shodan, AbuseIPDB, GreyNoise, URLScan.io, Whois/RDAP, NIST, and VulnCheck. Supports LLM enrichment, IOC extraction, YARA scanning, and Android analysis.
Advanced vulnerability scanning with Nmap NSE
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
Automatic SSRF fuzzer and exploitation tool
Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
Penetration tests guide based on OWASP including test cases, resources and examples.
Open source vulnerability DB and triage service.
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Hacking resources and cheat sheets. References, tools, scripts, tutorials, and other resources that help offensive and defensive security professionals.
一个基于 docsify 快速部署 Awesome-POC 漏洞文档的项目。Deploying the Awesome-POC repository via docsify.
vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collection (including sub-domain name, ip address, country information, organizational information and time zone, etc.) and vulnerability scanning.
Reverse Shell as a Service
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.
🧵 CLI tool for directly patching container images!
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
GUAC aggregates software security metadata into a high fidelity graph database.
HummerRisk 是云原生安全平台,包括混合云安全治理和云原生安全检测。
傻瓜式漏洞PoC测试框架
Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
Penetration Testing Platform
secator - the pentester's swiss knife
IoT固件漏洞复现环境
75k+ WordPress Nuclei templates, updated daily from Wordfence intel—filter by severity/tags/CVE and scan in one line. 🚀🔒
hack tools
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
Vulnerability Labs for security analysis
This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".
A laboratory for learning secure web and mobile development in a practical manner.
The Correlated CVE Vulnerability And Threat Intelligence Database API
Reconmap is a collaboration-first security operations platform for infosec teams and MSSPs, enabling end‑to‑end engagement management, from reconnaissance through execution and reporting. With built-in command automation, output parsing, and AI‑assisted summaries, it delivers faster, more structured, and high‑quality security assessments.
一个开源的、开箱即用的漏洞批量验证框架
These are my checklists which I use during my hunting.
DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
:: Prism X · Automated Enterprise Network Security Risk Detection and Vulnerability Scanning Tool / 棱镜 X · 自动化企业网络安全风险检测、漏洞扫描工具
An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
Vulnerability (CVE) scanner for Nix/NixOS [maintainer=@henrirosten]
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.
An example C program which contains vulnerable code for common types of vulnerabilities. It can be used to show fuzzing concepts.
Recent CVE PoC & reproduction scripts. Focused on high-severity vulnerabilities across Linux kernel, Windows, macOS and more.
🔪Browser logic vulnerabilities :skull_and_crossbones:
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain