Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

Projects in Awesome Lists tagged with security-vulnerability

A curated list of projects in awesome lists tagged with security-vulnerability .

https://github.com/cisofy/lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

auditing compliance devops devops-tools gdpr hardening hipaa linux pci-dss security-audit security-hardening security-scanner security-tools security-vulnerability shell system-hardening unix vulnerability-assessment vulnerability-detection vulnerability-scanners

Last synced: 16 Dec 2024

https://github.com/CISOfy/Lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

auditing compliance devops devops-tools gdpr hardening hipaa linux pci-dss security-audit security-hardening security-scanner security-tools security-vulnerability shell system-hardening unix vulnerability-assessment vulnerability-detection vulnerability-scanners

Last synced: 17 Nov 2024

https://github.com/CISOfy/lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

auditing compliance devops devops-tools gdpr hardening hipaa linux pci-dss security-audit security-hardening security-scanner security-tools security-vulnerability shell system-hardening unix vulnerability-assessment vulnerability-detection vulnerability-scanners

Last synced: 29 Oct 2024

https://github.com/presidentbeef/brakeman

A static analysis security vulnerability scanner for Ruby on Rails applications

brakeman rails ruby security security-audit security-tools security-vulnerability static-analysis vulnerabilities

Last synced: 21 Dec 2024

https://github.com/google/syzkaller

syzkaller is an unsupervised coverage-guided kernel fuzzer

fuzz-testing fuzzer fuzzing kernel linux security security-tools security-vulnerability testing

Last synced: 17 Dec 2024

https://github.com/roave/securityadvisories

:closed_lock_with_key: Security advisories as a simple composer exclusion list, updated daily

composer infosec php security-advisories security-vulnerabilities security-vulnerability

Last synced: 16 Dec 2024

https://github.com/Roave/SecurityAdvisories

:closed_lock_with_key: Security advisories as a simple composer exclusion list, updated daily

composer infosec php security-advisories security-vulnerabilities security-vulnerability

Last synced: 29 Oct 2024

https://github.com/brunofacca/zen-rails-security-checklist

Checklist of security precautions for Ruby on Rails applications.

checklist rails ruby ruby-on-rails security security-vulnerability

Last synced: 21 Dec 2024

https://github.com/pyupio/safety

Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.

cicd dependency-management devsecops open-source-security package-management python security security-vulnerability travis vulnerability-detection vulnerability-scanners

Last synced: 17 Dec 2024

https://github.com/opensec-cn/kunpeng

kunpeng是一个Golang编写的开源POC框架/库,以动态链接库的形式提供各种语言调用,通过此项目可快速开发漏洞检测类的系统。

poc-library proof-of-concept security-testing security-vulnerability

Last synced: 21 Dec 2024

https://github.com/0xRadi/OWASP-Web-Checklist

OWASP Web Application Security Testing Checklist

bugbounty checklist owasp security security-tools security-vulnerability testing

Last synced: 26 Oct 2024

https://github.com/0xradi/owasp-web-checklist

OWASP Web Application Security Testing Checklist

bugbounty checklist owasp security security-tools security-vulnerability testing

Last synced: 03 Nov 2024

https://github.com/jxy-s/herpaderping

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

antivirus antivirus-evasion exploit exploit-development exploit-framework exploitation exploits process-doppelganging process-herpaderping process-hollowing process-migration security security-vulnerability vulnerability windows windows-10 windows-7 windows-defender

Last synced: 15 Dec 2024

https://github.com/ohmybahgosh/RockYou2021.txt

RockYou2021.txt is a MASSIVE WORDLIST compiled of various other wordlists. RockYou2021.txt DOES NOT CONTAIN USER:PASS logins!

hashcat password-safety password-strength rockyou rockyou2021 security security-audit security-vulnerability wordlist wordlists wordlists-dictionary-collection

Last synced: 30 Oct 2024

https://github.com/0xbug/SQLiScanner

Automatic SQL injection with Charles and sqlmap api

autoscan scanner security security-audit security-vulnerability sqlmap sqlmap-webui sqlmapapi

Last synced: 03 Nov 2024

https://github.com/Eugnis/spectre-attack

Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715)

c example exploit security-vulnerability spectre

Last synced: 09 Nov 2024

https://github.com/Fuzzapi/fuzzapi

Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem

api automation fuzzer rails ruby security security-vulnerability

Last synced: 03 Nov 2024

https://github.com/pyupio/pyup

A tool to update your project's dependencies on GitHub. Runs on pyup.io, comes with a command line interface.

dependency dependency-manager security security-tools security-vulnerability

Last synced: 15 Dec 2024

https://github.com/boyan-milanov/ropium

ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together

binary-exploitation chaining-gadgets exploit-development gadget rop-chain rop-exploits rop-gadgets security security-vulnerability semantic

Last synced: 16 Dec 2024

https://github.com/srcclr/commit-watcher

Find interesting and potentially hazardous commits in git projects

auditing database docker email-notification favor rails rds regular-expression security-vulnerability watch

Last synced: 03 Nov 2024

https://github.com/deadbits/insecureprogramming

mirror of gera's insecure programming examples | http://community.coresecurity.com/~gera/InsecureProgramming/

c exploitation learning-exercise security security-vulnerability vulnerabilities

Last synced: 13 Dec 2024

https://github.com/deadbits/InsecureProgramming

mirror of gera's insecure programming examples | http://community.coresecurity.com/~gera/InsecureProgramming/

c exploitation learning-exercise security security-vulnerability vulnerabilities

Last synced: 27 Oct 2024

https://github.com/momo5502/cod-exploits

☠️ Call of Duty - Vulnerabilities and proof-of-concepts

assembly cod cpp exploit hack ida mw2 poc security-vulnerability

Last synced: 09 Nov 2024

https://github.com/codingo/crithit

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

bugbounty enumeration hacking hacking-tool infosec offensive-security penetration-testing pentest-tools pentesting security security-audit security-tools security-vulnerability web-application-security

Last synced: 08 Dec 2024

https://github.com/paulveillard/cybersecurity

Welcome Cybersecurity's World. An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources in Cybersecurity.

computer-architecture computer-security cryptography cyber-physical-systems cybersecurity cybersecurity-awareness cybersecurity-blog cybersecurity-career-path cybersecurity-education cybersecurity-incidents defensive-security security security-audit security-automation security-hardening security-testing security-tools security-vulnerability

Last synced: 21 Dec 2024

https://github.com/openraven/magpie

A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.

aws cloud cloudsecurity cspm gcp security security-audit security-scanner security-testing security-tools security-vulnerability

Last synced: 21 Nov 2024

https://github.com/Vulnogram/Vulnogram

Vulnogram is a tool for creating and editing CVE information in CVE JSON format

cve cve-json cvss cvssv3 cwe json nvd security security-automation security-tools security-vulnerability vulnerability

Last synced: 11 Nov 2024

https://github.com/MichaelStott/CRLF-Injection-Scanner

Command line tool for testing CRLF injection on a list of domains.

bugbounty cli crlf fuzzer fuzzing security-vulnerability

Last synced: 24 Oct 2024

https://github.com/michaelstott/crlf-injection-scanner

Command line tool for testing CRLF injection on a list of domains.

bugbounty cli crlf fuzzer fuzzing security-vulnerability

Last synced: 01 Nov 2024

https://github.com/mhaskar/Bughound

Static code analysis tool based on Elasticsearch

code-anaysis security security-vulnerability

Last synced: 21 Nov 2024

https://github.com/SecureSkyTechnology/study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095

Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告

jackson2 security-vulnerability struts2

Last synced: 21 Nov 2024

https://github.com/fingerprintjs/blog-indexeddb-safari-leaks-demo

Demo showcasing information leaks resulting from an IndexedDB same-origin policy violation in WebKit.

demo indexeddb privacy safari security-vulnerability web-application webapp

Last synced: 09 Nov 2024

https://github.com/edersonbrilhante/vilicus

Vilicus is an open source tool that orchestrates security scans of container images(docker/oci) and centralizes all results into a database for further analysis and metrics.

anchore cicd clair docker docker-image docker-scanner golang oci oci-image oci-scanner scan-images security security-scanner security-tools security-vulnerability trivy vilicus

Last synced: 01 Nov 2024

https://github.com/himazawa/bento

Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.

ctf ctf-tools docker minimal penetration penetration-testing-tools security-vulnerability

Last synced: 21 Nov 2024

https://github.com/OpenL2D/moc3ingbird

MOC3ingbird Exploit for Live2D (CVE-2023-27566)

exploit live2d live2d-cubism live2d-cubism-sdk moc3 security-vulnerability

Last synced: 05 Nov 2024

https://github.com/codingo/ransomware-json-dataset

Compiles a json dataset using public sources that contains properties to aid in the detection and mitigation of over 1000 variants of ransomware.

dataset-generation detection excel-to-json json json-dataset mitigation prevention ransomware ransomware-prevention ransomware-resources ransomware-summary security security-audit security-hardening security-vulnerability spreadsheet wannacry

Last synced: 01 Nov 2024

https://github.com/kabilan1290/grapX

grapX will iterate through the URLs and grep the endpoints with all possible extensions.

automation bugbounty bugbounty-tool bugbountytips cybersecurity opensource python python-script security-automation security-vulnerability

Last synced: 21 Nov 2024

https://github.com/syss-research/icestick-lpc-tpm-sniffer

FPGA-based LPC bus sniffing tool for Lattice iCEstick Evaluation Kit

attack fpga ice40 icestick it-security lpc security security-tools security-vulnerability sniffer sniffing tool

Last synced: 24 Nov 2024

https://github.com/jay-johnson/owasp-jenkins

Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ansible and docker? :whale: :shield: :lock:

ansible c-sharp dependency-checker django docker jenkins national-vulnerability-database node nvd owasp python react ruby-on-rails security security-automation security-testing security-vulnerability tensorflow vue zap

Last synced: 12 Oct 2024

https://github.com/cymmetria/ciscoasa_honeypot

A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.

cisco cisco-asa execution-vulnerability honeypot security security-tools security-vulnerability vulnerability

Last synced: 30 Oct 2024

https://github.com/lmoroz/bwapp

bWAPP latest modified for PHP7 bundled with Docker container

bwapp owasp owasp-top-10 pentesting security-vulnerability

Last synced: 17 Dec 2024

https://github.com/spyoungtech/hikvision-recover

Command-line tool for generating recovery codes for Hikvision IP Cameras

hikvision ip-camera security security-vulnerability

Last synced: 28 Oct 2024

https://github.com/leobenkel/soteria

Plugin to block compilation when unapproved dependencies are used or code styling does not comply.

sbt sbt-plugin scala security security-automation security-tools security-vulnerability

Last synced: 09 Nov 2024

https://github.com/syss-research/icestick-glitcher

Simple voltage glitcher implementation for the Lattice iCEstick Evaluation Kit

fpga glitching ice40 ice40hx1k icestick it-security security-tools security-vulnerability tool

Last synced: 24 Nov 2024

https://github.com/vs4vijay/scanmaster

A security tool designed to perform thorough scans on a target using OpenVAS, Zap, and Nexpose. It seamlessly consolidates and integrates the scan results, providing a comprehensive overview of the security vulnerabilities identified.

application-security cli nexpose openvas openvas-cli openvas-reports owasp owasp-top owasp-zap security-audit security-scanner security-testing security-tools security-vulnerability web-application-security zap

Last synced: 11 Nov 2024

https://github.com/mrackwitz/jeroboam

Check all your apps on macOS for vulnerable Sparkle updaters

macos security security-scanner security-tools security-vulnerability

Last synced: 28 Oct 2024

https://github.com/cymmetria/weblogic_honeypot

WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.

deception execution-vulnerability honeypot oracle security security-tools security-vulnerability vulnerability weblogic weblogic-server

Last synced: 18 Nov 2024

https://github.com/cyb3rmx/nscript

Network security analysis tool with nmap scripts for termux ...

bash linux nmap nmap-brute nmap-scripts security security-vulnerability shell

Last synced: 21 Nov 2024

https://github.com/Cymmetria/weblogic_honeypot

WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middleware. This is a Remote Code Execution vulnerability.

deception execution-vulnerability honeypot oracle security security-tools security-vulnerability vulnerability weblogic weblogic-server

Last synced: 30 Oct 2024

https://github.com/paulveillard/cybersecurity-devsecops

An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about DevSecOps in Cybersecurity.

cybersecurity cybersecurity-education devops devsecops secops security-automation security-by-design security-compliance security-development security-education security-enablement security-engineering security-lab security-management security-tools security-vulnerability

Last synced: 07 Dec 2024

https://github.com/syss-research/slig

Siemens LOGO!8 PLC Password Hacking Proof-of-Concept-Tool

it-security logo8 nmap-scripts security security-vulnerability siemens-logo tool

Last synced: 24 Nov 2024

https://github.com/paulveillard/cybersecurity-threat-detection

An ongoing & curated collection of awesome software best practices and remediation techniques, libraries and frameworks, E-books and videos, Technical guidelines and important resources about Threat Detection & Hunting.

cybersecurity encryption-decryption malware-analysis malware-detection malware-development security-tools security-vulnerability threat-analysis threat-blocker threat-detection threat-detection-policy threat-explorer threat-hunting threat-intelligence threat-modeling threat-monitor threat-response

Last synced: 07 Dec 2024

https://github.com/paulveillard/cybersecurity-application-security

An ongoing & curated collection of awesome software practices and remediation, libraries and frameworks,payloads and techniques, best guidelines and technical resources about Application Security

application application-security appsec developer-security endpoint-security mdm-server mobilesecurity security-advisory security-hardening security-scanner security-testing security-tools security-vulnerability vulnerability-scanners web-security web-security-research

Last synced: 07 Dec 2024

https://github.com/yojiwatanabe/networkalarm

A tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, credentials sent in-the-clear, and shellshock attacks. Currently supports live monitoring and network capture (pcap) scanning.

hack-detection network-capture network-monitoring networking pcap scanning security security-automation security-scanner security-vulnerability

Last synced: 17 Nov 2024

https://github.com/rouanw/npm-audit-helper

Helps you understand and work through npm audit results

npm npm-audit security security-vulnerability

Last synced: 09 Nov 2024

https://github.com/goncalor/cve-ark

All published CVE and their recent changes, ready to be used by humans and machines

cve security security-vulnerability

Last synced: 21 Nov 2024

https://github.com/cymmetria/micros_honeypot

MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (MICROS). This is a directory traversal vulnerability.

deception honeypot micros oracle security security-tools security-vulnerability vulnerability

Last synced: 18 Nov 2024

https://github.com/lunnova/puma6fail

CVE-2017-5693 Denial of service vulnerability in Puma 6 modems

networking rust security-vulnerability

Last synced: 07 Nov 2024

https://github.com/Cymmetria/micros_honeypot

MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (MICROS). This is a directory traversal vulnerability.

deception honeypot micros oracle security security-tools security-vulnerability vulnerability

Last synced: 30 Oct 2024

https://github.com/kayrus/kc_s701_break_free

Result of the Android security research

android kyocera linux-module security-vulnerability

Last synced: 09 Nov 2024

https://github.com/jz543fm/kali-dockerized

Kali Linux in Docker + Ubuntu 22.04 in Docker for Bug Bounty, Penetration Testing, Security Research, Computer Forensics and Reverse Engineering. Kali Linux inside with Docker with or without support with systemd, repository also contains Proof of Concept with kind (Kubernetes in Docker) to test Kali Linux with enabled systemd in K8s cluster

bug-bounty buildkit computer-forensics cybersecurity docker docker-compose docker-kali-linux dockerfile kali kali-linux makefile pentesting-tools security-tools security-vulnerability systemd trivy ubuntu vulnerability-detection vulnerability-scanners

Last synced: 09 Nov 2024

https://github.com/syss-research/icebreaker-glitcher

Simple voltage glitcher implementation for the iCEBreaker FPGA board

fpga glitching ice40 ice40up5k icebreaker it-security security security-tools security-vulnerability tool

Last synced: 24 Nov 2024

https://github.com/nus-apr/crashrepair

Security Vulnerability Repair via Concolic Execution and Code Mutations

program-analysis program-repair security-vulnerability

Last synced: 14 Nov 2024