Android app to scan for bash Vulnerability - CVE-2014-6271 also known as Shellsh

Java11gpl-2.0

3 years ago

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

Python158gpl-3.0

11 months ago

bountybugcybersecurity

AndroBugs Framework is an efficient Android vulnerability scanner that helps dev

Python1096gpl-3.0

5 years ago

A low interaction honeypot for the Cisco ASA component capable of detecting CVE-

JavaScript50mit

5 years ago

ciscocisco-asaexecution-vulnerability

A plugin based GraphQL vulnerability assessment tool.

Python12mit

3 years ago

graphqlgraphql-securitypentest-tool

A vulnerability patch gathering tool

Java39apache-2.0

5 years ago

A high performance offensive security tool for reconnaissance and vulnerability

Python2998mit

13 days ago

enumerationfuzzinghacking

Auto Scanning to SSL Vulnerability

Python611mit

3 years ago

hackingscannersecurity

A project security/vulnerability/risk scanning tool

JavaScript359other

3 years ago

cidockernodejs

Honeypot for Intel's AMT Firmware Vulnerability CVE-2017-5689

Go16

2 months ago

macOS vulnerability management for individuals

JavaScript21mit

last year

cybersecurityelectronmacos

A static analysis security vulnerability scanner for Ruby on Rails applications

Ruby6747other

7 months ago

brakemanrailsruby

A honeypot for the Log4Shell vulnerability (CVE-2021-44228).

Python87gpl-3.0

2 years ago

Honeypot for Intel's AMT Firmware Vulnerability CVE-2017-5689

Go15

4 years ago

MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Ora

ASP14mit

6 years ago

deceptionhoneypotmicros

WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the

Python31mit

4 years ago

deceptionexecution-vulnerabilityhoneypot

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Go17230mit

16 hours ago

attack-surfacecve-scannerhacktoberfest

Vulnerability Static Analysis for Containers

Go10030apache-2.0

8 days ago

claircontainersdocker

Advanced vulnerability scanning with Nmap NSE

Lua3318other

9 months ago

exploitlualua-script

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing,

Python1464apache-2.0

15 days ago

api-documentation-toolbugbountybugbounty-tool

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

5619mit

4 months ago

bugbountycross-site-scriptingdom-based

Free Docker Vulnerability Scanning for CI/CD integration

JavaScript33

5 months ago

Vulnerability Patterns Detector for C# and VB.NET

C#911lgpl-3.0

5 months ago

analysisanalyzercode

w3af: web application attack and audit framework, the open source web vulnerabil

Python4443

last year

appseccross-site-scriptingscanner

ROCA: Infineon RSA key vulnerability

Python477mit

6 months ago

detectordiscrete-logarithmfingerprinting

finds publicly known security vulnerabilities in a website's frontend JavaScript

JavaScript1902apache-2.0

8 months ago

hacktoberfestlighthousenodejs

NSE script based on Vulners.com API

Lua3122gpl-3.0

23 days ago

Android Vulnerability Test Suite - In the spirit of open data collection, and wi

Java1013other

5 years ago

This project is deprecated. Work is now done on https://github.com/anchore/syft

Python360apache-2.0

4 years ago

containersdockerpython

Discovering vulnerabilities in firmware through concolic analysis and function c

Python463gpl-3.0

4 years ago

angrexploitfirmware

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip

Python1807apache-2.0

19 days ago

appseccicdctf

a static analysis tool for finding vulnerabilities in C/C++ source code

Python448gpl-2.0

4 months ago

Easily report all connections attempts on common vulnerable ports to AbuseIPDB

Python12gpl-3.0

2 years ago

abuseipdbabuseipdb-apihoneypot

Static Application Security Testing (SAST) engine focused on covering the OWASP

Go484mit

2 years ago

androidandroid-securitycli

OWASP dependency-check is a software composition analysis utility that detects p

Java5494apache-2.0

5 months ago

ant-taskbuild-toolgradle-plugin

Tool to look for several security related Android application vulnerabilities

Python3134other

3 months ago

Infer# is an interprocedural and scalable static code analyzer for C#. Via the c

C#717mit

3 months ago

An Intentionally designed Vulnerable Android Application built in Kotlin.

Kotlin224mit

2 years ago

Oversecured Vulnerable Android App

Java601bsd-2-clause

5 months ago

android-securityappsecmobile-security

SSL-enabled Damn Vulnerable Web App (DVWA)

Dockerfile3mit

12 months ago

dockerdvwaethical-hacking

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl

Python2161gpl-2.0

3 years ago

abstract-syntaxabstract-syntax-treecontrol-flow-graph

Vulnerable Web applications Generator

Python84other

6 years ago

addondockergenerator

vulnerable web application for training

JavaScript57mit

3 months ago

Spot vulnerabilities in postgres extension scripts

Python27postgresql

2 months ago

A tool to enable fuzzing for Spectre vulnerabilities

C++30other

4 years ago

Cake Fuzzer is a project that is meant to help automatically and continuously di

Python86gpl-3.0

5 months ago

cybersecuritydasthacking

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes

Go19887apache-2.0

4 months ago

containersdevsecopsdocker

🔪Browser logic vulnerabilities :skull_and_crossbones:

HTML674mit

3 years ago

browsercvejavascript

scanner detecting the use of JavaScript libraries with known vulnerabilities. Ca

JavaScript3514other

3 days ago

build-toolchrome-extensionfirefox-extension

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if th

Scala258apache-2.0

5 months ago

appseccvedevops

TROMMEL: Sift Through Embedded Device Files to Identify Potential Vulnerable Ind

Python200other

4 years ago

a tool to perform static analysis of known vulnerabilities, trojans, viruses, ma

Python1110apache-2.0

11 months ago

detecting-anomalous-activitiesdockermalware-detection

cwe_checker finds vulnerable patterns in binary executables

Rust1037lgpl-3.0

last month

binary-analysiscwecwe-checker

Tsunami is a general purpose network security scanner with an extensible plugin

Java8055apache-2.0

2 months ago

Vuldroid is a Vulnerable Android Application made with security issues in order

Java55mit

3 years ago

android-applicationandroid-securityapplication-security

Puma Scan is a software security Visual Studio extension that provides real time

C#436mpl-2.0

last year

Dig Vulnerabilities in the BlackBox

Python1224gpl-3.0

8 days ago

androidblackboxblackbox-testing

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

Python2434bsd-3-clause

4 days ago

A database of vulnerable Ruby Gems

Ruby973other

2 months ago

advisory-fileshacktoberfestmetadata

A Collection of Vulnerabilities in ERC20 Smart Contracts With Tokens Affected

Python583cc0-1.0

2 months ago

awesomeawesome-listdapp

A set of GitHub actions for checking your projects for vulnerabilities

HTML477other

2 months ago

actionssnyk

CodeAlchemist: Semantics-Aware Code Generation to Find Vulnerabilities in JavaSc

F#229mit

4 years ago

code-generationfsharpfuzzer

Periodic cyber security newsletters that capture the latest news, summaries of c

781gpl-2.0

2 months ago

cybersecuritynewsletter

Deprecate due to vulnerabilities in dependencies. Rugby News Board built with No

JavaScript7mit

5 years ago

herokunodejspreact

Prevent cloud misconfigurations and find vulnerabilities during build-time in in

Python6236apache-2.0

4 months ago

awsaws-securityazure

Find security vulnerabilities, compliance issues, and infrastructure misconfigur

Open Policy Agent1791apache-2.0

4 months ago

appseccloudnativedevsecops

Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoa

90

6 months ago

aws-securitycloudformationcloudsecurity

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat

HCL1100apache-2.0

9 days ago

aws-securityazure-securitycloud-security

Vulnerable Android application for developers and security enthusiasts to learn

Java1190mit

9 days ago

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie

PHP701gpl-3.0

last year

phpphp-codesnifferphpcs

DIVA Android - Damn Insecure and vulnerable App for Android

Java911gpl-3.0

11 months ago

A curated list of fuzzing resources ( Books, courses - free and paid, videos, to

5075cc0-1.0

23 days ago

awesomeawesome-listfuzzing

LunaSec - Dependency Security Scanner that automatically notifies you about vuln

TypeScript1407other

2 months ago

compliancecontinuous-deliverycve-scanning

Store your unique credential on a hardware-backed security key and take it where

Kotlin236bsd-2-clause

last year

nfcoathtotp

Android app to scan for bash Vulnerability - CVE-2014-6271 also known as Shellsh

Java11gpl-2.0

3 years ago

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

Python158gpl-3.0

11 months ago

bountybugcybersecurity

AndroBugs Framework is an efficient Android vulnerability scanner that helps dev

Python1096gpl-3.0

5 years ago

A low interaction honeypot for the Cisco ASA component capable of detecting CVE-

JavaScript50mit

5 years ago

ciscocisco-asaexecution-vulnerability

A plugin based GraphQL vulnerability assessment tool.

Python12mit

3 years ago

graphqlgraphql-securitypentest-tool

A vulnerability patch gathering tool

Java39apache-2.0

5 years ago

A high performance offensive security tool for reconnaissance and vulnerability

Python2998mit

13 days ago

enumerationfuzzinghacking

Auto Scanning to SSL Vulnerability

Python611mit

3 years ago

hackingscannersecurity

A project security/vulnerability/risk scanning tool

JavaScript359other

3 years ago

cidockernodejs

Honeypot for Intel's AMT Firmware Vulnerability CVE-2017-5689

Go16

2 months ago

macOS vulnerability management for individuals

JavaScript21mit

last year

cybersecurityelectronmacos

A static analysis security vulnerability scanner for Ruby on Rails applications

Ruby6747other

7 months ago

brakemanrailsruby

A honeypot for the Log4Shell vulnerability (CVE-2021-44228).

Python87gpl-3.0

2 years ago

Honeypot for Intel's AMT Firmware Vulnerability CVE-2017-5689

Go15

4 years ago

MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Ora

ASP14mit

6 years ago

deceptionhoneypotmicros

WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the

Python31mit

4 years ago

deceptionexecution-vulnerabilityhoneypot

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Go17230mit

16 hours ago

attack-surfacecve-scannerhacktoberfest

Vulnerability Static Analysis for Containers

Go10030apache-2.0

8 days ago

claircontainersdocker

Advanced vulnerability scanning with Nmap NSE

Lua3318other

9 months ago

exploitlualua-script

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing,

Python1464apache-2.0

15 days ago

api-documentation-toolbugbountybugbounty-tool

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

5619mit

4 months ago

bugbountycross-site-scriptingdom-based

Free Docker Vulnerability Scanning for CI/CD integration

JavaScript33

5 months ago

Vulnerability Patterns Detector for C# and VB.NET

C#911lgpl-3.0

5 months ago

analysisanalyzercode

w3af: web application attack and audit framework, the open source web vulnerabil

Python4443

last year

appseccross-site-scriptingscanner

ROCA: Infineon RSA key vulnerability

Python477mit

6 months ago

detectordiscrete-logarithmfingerprinting

finds publicly known security vulnerabilities in a website's frontend JavaScript

JavaScript1902apache-2.0

8 months ago

hacktoberfestlighthousenodejs

NSE script based on Vulners.com API

Lua3122gpl-3.0

23 days ago

Android Vulnerability Test Suite - In the spirit of open data collection, and wi

Java1013other

5 years ago

This project is deprecated. Work is now done on https://github.com/anchore/syft

Python360apache-2.0

4 years ago

containersdockerpython

Discovering vulnerabilities in firmware through concolic analysis and function c

Python463gpl-3.0

4 years ago

angrexploitfirmware

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multip

Python1807apache-2.0

19 days ago

appseccicdctf

a static analysis tool for finding vulnerabilities in C/C++ source code

Python448gpl-2.0

4 months ago

Easily report all connections attempts on common vulnerable ports to AbuseIPDB

Python12gpl-3.0

2 years ago

abuseipdbabuseipdb-apihoneypot

Static Application Security Testing (SAST) engine focused on covering the OWASP

Go484mit

2 years ago

androidandroid-securitycli

OWASP dependency-check is a software composition analysis utility that detects p

Java5494apache-2.0

5 months ago

ant-taskbuild-toolgradle-plugin

Tool to look for several security related Android application vulnerabilities

Python3134other

3 months ago

Infer# is an interprocedural and scalable static code analyzer for C#. Via the c

C#717mit

3 months ago

An Intentionally designed Vulnerable Android Application built in Kotlin.

Kotlin224mit

2 years ago

Oversecured Vulnerable Android App

Java601bsd-2-clause

5 months ago

android-securityappsecmobile-security

SSL-enabled Damn Vulnerable Web App (DVWA)

Dockerfile3mit

12 months ago

dockerdvwaethical-hacking

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Appl

Python2161gpl-2.0

3 years ago

abstract-syntaxabstract-syntax-treecontrol-flow-graph

Vulnerable Web applications Generator

Python84other

6 years ago

addondockergenerator

vulnerable web application for training

JavaScript57mit

3 months ago

Spot vulnerabilities in postgres extension scripts

Python27postgresql

2 months ago

A tool to enable fuzzing for Spectre vulnerabilities

C++30other

4 years ago

Cake Fuzzer is a project that is meant to help automatically and continuously di

Python86gpl-3.0

5 months ago

cybersecuritydasthacking

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes

Go19887apache-2.0

4 months ago

containersdevsecopsdocker

🔪Browser logic vulnerabilities :skull_and_crossbones:

HTML674mit

3 years ago

browsercvejavascript

scanner detecting the use of JavaScript libraries with known vulnerabilities. Ca

JavaScript3514other

3 days ago

build-toolchrome-extensionfirefox-extension

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if th

Scala258apache-2.0

5 months ago

appseccvedevops

TROMMEL: Sift Through Embedded Device Files to Identify Potential Vulnerable Ind

Python200other

4 years ago

a tool to perform static analysis of known vulnerabilities, trojans, viruses, ma

Python1110apache-2.0

11 months ago

detecting-anomalous-activitiesdockermalware-detection

cwe_checker finds vulnerable patterns in binary executables

Rust1037lgpl-3.0

last month

binary-analysiscwecwe-checker

Tsunami is a general purpose network security scanner with an extensible plugin

Java8055apache-2.0

2 months ago

Vuldroid is a Vulnerable Android Application made with security issues in order

Java55mit

3 years ago

android-applicationandroid-securityapplication-security

Puma Scan is a software security Visual Studio extension that provides real time

C#436mpl-2.0

last year

Dig Vulnerabilities in the BlackBox

Python1224gpl-3.0

8 days ago

androidblackboxblackbox-testing

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

Python2434bsd-3-clause

4 days ago

A database of vulnerable Ruby Gems

Ruby973other

2 months ago

advisory-fileshacktoberfestmetadata

A Collection of Vulnerabilities in ERC20 Smart Contracts With Tokens Affected

Python583cc0-1.0

2 months ago

awesomeawesome-listdapp

A set of GitHub actions for checking your projects for vulnerabilities

HTML477other

2 months ago

actionssnyk

CodeAlchemist: Semantics-Aware Code Generation to Find Vulnerabilities in JavaSc

F#229mit

4 years ago

code-generationfsharpfuzzer

Periodic cyber security newsletters that capture the latest news, summaries of c

781gpl-2.0

2 months ago

cybersecuritynewsletter

Deprecate due to vulnerabilities in dependencies. Rugby News Board built with No

JavaScript7mit

5 years ago

herokunodejspreact

Prevent cloud misconfigurations and find vulnerabilities during build-time in in

Python6236apache-2.0

4 months ago

awsaws-securityazure

Find security vulnerabilities, compliance issues, and infrastructure misconfigur

Open Policy Agent1791apache-2.0

4 months ago

appseccloudnativedevsecops

Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoa

90

6 months ago

aws-securitycloudformationcloudsecurity

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat

HCL1100apache-2.0

9 days ago

aws-securityazure-securitycloud-security

Vulnerable Android application for developers and security enthusiasts to learn

Java1190mit

9 days ago

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilitie

PHP701gpl-3.0

last year

phpphp-codesnifferphpcs

DIVA Android - Damn Insecure and vulnerable App for Android

Java911gpl-3.0

11 months ago

A curated list of fuzzing resources ( Books, courses - free and paid, videos, to

5075cc0-1.0

23 days ago

awesomeawesome-listfuzzing

LunaSec - Dependency Security Scanner that automatically notifies you about vuln

TypeScript1407other

2 months ago

compliancecontinuous-deliverycve-scanning

Store your unique credential on a hardware-backed security key and take it where

Kotlin236bsd-2-clause

last year

nfcoathtotp