#Vulnerability-management

Showing 58 of 58 repositories tagged #vulnerability-management, ranked by stars

The-Art-of-Hacking
The-Art-of-Hacking
h4cker

This repository is maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), AI security, vulnerability research, exploit development, reverse engineering, and more. πŸ”₯ Also check: https://hackertraining.org

Score
100
β˜… 28.3k β‘‚ 5.3k +135/day
Jupyter Notebook
future-architect
future-architect
vuls

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Score
100
β˜… 12.2k β‘‚ 1.2k +1/day
Go
infobyte
infobyte
faraday

Open Source Vulnerability Management Platform

Score
67
β˜… 6.6k β‘‚ 1.1k +5/day
Python
fleetdm
fleetdm
fleet

Open device management

Score
0
β˜… 6.6k β‘‚ 931 β€”
Go
deepfence
deepfence
ThreatMapper

Open Source Cloud Native Application Protection Platform (CNAPP)

Score
100
β˜… 5.3k β‘‚ 636 +1/day
TypeScript
OWASP
OWASP
Nettacker

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Score
33
β˜… 5.3k β‘‚ 1.1k +8/day
Python
DefectDojo
DefectDojo
django-DefectDojo

Open-Source Unified Vulnerability Management, DevSecOps & ASPM

Score
100
β˜… 4.8k β‘‚ 1.9k +1/day
HTML
greenbone
greenbone
openvas-scanner

This repository contains the scanner component for Greenbone Community Edition.

Score
100
β˜… 4.7k β‘‚ 783 +5/day
Rust
A-poc
A-poc
BlueTeam-Tools

Tools and Techniques for Blue Team / Incident Response

Score
75
β˜… 4.2k β‘‚ 644 +92/day
google
google
osv.dev

Open source vulnerability DB and triage service.

Score
98
β˜… 2.8k β‘‚ 338 +1/day
Go
opencve
opencve
opencve

Vulnerability Intelligence Platform

Score
95
β˜… 2.8k β‘‚ 331 +6/day
Python
archerysec
archerysec
archerysec

ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.

Score
75
β˜… 2.5k β‘‚ 523 +3/day
JavaScript
skavngr
skavngr
rapidscan

:new: The Multi-Tool Web Vulnerability Scanner.

Score
65
β˜… 2.1k β‘‚ 433 +26/day
Python
Bert-JanP
Bert-JanP
Hunting-Queries-Detection-Rules

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Score
92
β˜… 1.7k β‘‚ 325 +2/day
Python
project-copacetic
project-copacetic
copacetic

🧡 CLI tool for directly patching container images!

Score
88
β˜… 1.7k β‘‚ 121 +14/day
Go
guacsec
guacsec
guac

GUAC aggregates software security metadata into a high fidelity graph database.

Score
90
β˜… 1.5k β‘‚ 205 β€”
Go
topscoder
topscoder
nuclei-wordfence-cve

75k+ WordPress Nuclei templates, updated daily from Wordfence intelβ€”filter by severity/tags/CVE and scan in one line. πŸš€πŸ”’

Score
85
β˜… 1.3k β‘‚ 156 +1/day
Python
mukul975
mukul975
cve-mcp-server

Production-grade MCP server giving Claude 27 security intelligence tools across 21 APIs β€” CVE lookup, EPSS scoring, CISA KEV, MITRE ATT&CK, Shodan, VirusTotal, and more.

Score
82
β˜… 1.1k β‘‚ 174 +7/day
Python
reconmap
reconmap
reconmap

Reconmap is a collaboration-first security operations platform for infosec teams and MSSPs, enabling end‑to‑end engagement management, from reconnaissance through execution and reporting. With built-in command automation, output parsing, and AI‑assisted summaries, it delivers faster, more structured, and high‑quality security assessments.

Score
80
β˜… 938 β‘‚ 133 +1/day
JavaScript
securitytemplates
securitytemplates
sectemplates

Open source templates you can use to bootstrap your security programs

Score
72
β˜… 909 β‘‚ 128 +1/day
olacabs
olacabs
jackhammer

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Score
60
β˜… 741 β‘‚ 164 β€”
Java
seccubus
seccubus
seccubus

Easy automated vulnerability scanning, reporting and analysis

Score
57
β˜… 712 β‘‚ 153 β€”
JavaScript
Patrowl
Patrowl
PatrowlManager

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Score
100
β˜… 637 β‘‚ 112 β€”
HTML
pablosnt
pablosnt
rekono

Pentesting automation platform that combines hacking tools to complete assessments

Score
78
β˜… 525 β‘‚ 80 β€”
Python
facebookincubator
facebookincubator
nvdtools

A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)

Score
50
β˜… 469 β‘‚ 91 +1/day
Go
CervantesSec
CervantesSec
cervantes

Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.

Score
70
β˜… 442 β‘‚ 69 +1/day
C#
flipkart-incubator
flipkart-incubator
watchdog

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

Score
48
β˜… 430 β‘‚ 102 β€”
Python
ispras
ispras
casr

Collect crash (or UndefinedBehaviorSanitizer error) reports, triage, and estimate severity.

Score
68
β˜… 355 β‘‚ 36 β€”
Rust
418sec
418sec
huntr

Public Roadmap | huntr.dev

Score
38
β˜… 275 β‘‚ 87 β€”
greenbone
greenbone
gsa

Greenbone Security Assistant - The web frontend for the Greenbone Community Edition

Score
0
β˜… 263 β‘‚ 115 β€”
TypeScript
gmatuz
gmatuz
inthewilddb

Hourly updated database of exploit and exploitation reports

Score
25
β˜… 260 β‘‚ 16 +1/day
Python
Secure-Compliance-Solutions-LLC
Secure-Compliance-Solutions-LLC
GVM-Docker

Greenbone Vulnerability Management Docker Image with OpenVAS

Score
32
β˜… 246 β‘‚ 88 β€”
XSLT
Patrowl
Patrowl
PatrowlEngines

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Score
50
β˜… 244 β‘‚ 68 β€”
Python
sbom-tool
sbom-tool
sbom-tools

Semantic SBOM/CBOM diff, quality scoring, and TUI analysis tool for CycloneDX/SPDX β€” covering component changes, dependency shifts, license conflicts, vulnerabilities, cryptographic inventory grading, and PQC compliance (CNSA 2.0, NIST IR 8547).

Score
0
β˜… 231 β‘‚ 13 β€”
Rust
matro7sh
matro7sh
Smersh

Smersh is a pentest oriented collaborative tool used to track the progress of your company's missions.

Score
22
β˜… 218 β‘‚ 30 β€”
TypeScript
l3montree-dev
l3montree-dev
devguard

DevGuard Backend - Secure your Software Supply Chain - Attestation-based compliance as Code, manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Security Framework Documentation made easy - OWASP Incubating Project

Score
62
β˜… 145 β‘‚ 32 +1/day
Go
fatihtokus
fatihtokus
scan2html

A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more) to an interactive html file.

Score
50
β˜… 139 β‘‚ 14 +1/day
HTML
1N3
1N3
AttackSurfaceManagement

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Score
20
β˜… 105 β‘‚ 21 β€”
Shell
ozanunal0
ozanunal0
viper

πŸ›‘οΈ VIPER: Stay ahead of threats with AI-driven vulnerability intelligence. Prioritize CVEs effectively using NVD, EPSS, CISA KEV, and Google Gemini insights, all on an interactive dashboard

Score
0
β˜… 92 β‘‚ 15 β€”
Python
antoinet
antoinet
swiss-bugbounty-programs

List of bug bounty and coordinated vulnerability disclosure programs of companies/organisations in Switzerland

Score
18
β˜… 85 β‘‚ 16 β€”
psc4re
psc4re
quick-scripts

A collection of my quick and dirty scripts for vulnerability POC and detections

Score
40
β˜… 75 β‘‚ 19 β€”
Lua
TinyActive
TinyActive
fluxion

Unified Vulnerability Intelligence Platform

Score
42
β˜… 73 β‘‚ 17 β€”
TypeScript
simplevulnerabilitymanager
simplevulnerabilitymanager
svm

Program to perform vulnerability analysis and automatically generate a report

Score
52
β˜… 58 β‘‚ 16 β€”
Batchfile
apache
apache
magpie

Agent-assisted maintainership and development framework for Apache projects β€” Triage and Drafting (agent-authored fixes with human review); Mentoring, Pairing (developer-side dev-cycle), and Auto-merge on the roadmap.

Score
0
β˜… 57 β‘‚ 41 +4/day
Python
Hack23
Hack23
ISMS-PUBLIC

Hack23 Public Information Security Management System:Security Through Transparency and Open Documentation Demonstrating Security Excellence Through Public ISMS Disclosure

Score
55
β˜… 55 β‘‚ 11 +3/day
paulveillard
paulveillard
cybersecurity-blue-team

A collection of awesome software, libraries, learning tutorials, documents and books, technical resources and cool stuff about Blue Team in Cybersecurity.

Score
12
β˜… 55 β‘‚ 10 β€”
infobyte
infobyte
faraday-cli

Faraday's Command Line Interface

Score
25
β˜… 52 β‘‚ 22 β€”
Python
deepfence
deepfence
deepfence_runtime_api

Deepfence Runtime API & code samples

Score
0
β˜… 48 β‘‚ 3 β€”
HTML
cra-compliance-lab
cra-compliance-lab
awesome-cra-compliance

Curated resources for the EU Cyber Resilience Act (Regulation 2024/2847): regulation, harmonised standards, EUCC, SBOM, vulnerability management, conformity assessment

Score
35
β˜… 39 β‘‚ 5 +2/day
S1N6H
S1N6H
Barcha

Barcha is your Swiss‑Army knife for SQL Injection reconnaissance πŸ”. Written in Go, it automates: Shodan enumeration of SSL hosts πŸ•΅οΈβ€β™‚οΈ Liveness & redirect checks (ignores bad certs) πŸ”„ Automated Ghauri tests for each host πŸ›‘οΈ SQLite logging of every scan πŸ”–

Score
8
β˜… 33 β‘‚ 5 +1/day
Go
OWASP
OWASP
www-project-vulnerability-management-guide

OWASP Foundation Web Respository

Score
45
β˜… 33 β‘‚ 10 β€”
HTML
talsoft
talsoft
vuldash

Vulnerability Dashboard

Score
10
β˜… 31 β‘‚ 13 β€”
PHP
UPinar
UPinar
contrastapi

MCP server with 55 security intelligence tools β€” CVE/KEV, MITRE ATLAS+D3FEND, Sigma detection rules, email security posture (SPF/DMARC), domain & web intel, threat intel.

Score
30
β˜… 31 β‘‚ 4 +2/day
Python
mangod12
mangod12
OneAlert

AI-powered SOC for OT/ICS networks β€” 6 autonomous agents, MITRE ATT&CK mapping, Suricata/Zeek ingestion, human-in-the-loop response, 330+ tests. Open-source alternative to Claroty/Dragos for SMBs.

Score
28
β˜… 30 β‘‚ 3 β€”
Python
OpenEoX
OpenEoX
openeox

This project aims to standardize the representation and management of EOL and EOS product information across the industry.

Score
5
β˜… 30 β‘‚ 4 β€”
manasecurity
manasecurity
mana-security-app

macOS vulnerability management for individuals

Score
0
β˜… 27 β‘‚ 1 β€”
JavaScript
paulveillard
paulveillard
cybersecurity-ssrf

An ongoing & curated collection of awesome web vulnerability - Server-side request forgery software practices and remediation, libraries and frameworks, best guidelines and technical resources about SSRF

Score
2
β˜… 25 β‘‚ 5 β€”
Python
chetstriker
chetstriker
PenPeeper

Manage engagements, run scans, and generate reports from a central hub

Score
15
β˜… 17 β‘‚ 1 β€”
Dart
Related Topics
#security#cybersecurity#vulnerability#vulnerability-scanners#security-tools#devsecops#penetration-testing#cve#vulnerability-assessment#security-automation#vulnerability-detection#vulnerabilities

Β© 2026 GitRepoTrend Β· GitHub repositories by topic Β· Updated weekly