Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Test your prompts, agents, and RAGs. AI Red teaming, pentesting, and vulnerability scanning for LLMs. Compare performance of GPT, Claude, Gemini, Llama, and more. Simple declarative configs with command line and CI/CD integration.

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

Tfsec is now part of Trivy

Open Source Vulnerability Management Platform

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

Open Source Cloud Native Application Protection Platform (CNAPP)

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory ext…

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders

This repository contains the scanner component for Greenbone Community Edition.

Advanced vulnerability scanning with Nmap NSE

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓

EMBA - The firmware security analyzer

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Open source vulnerability DB and triage service.

🆕 The Multi-Tool Web Vulnerability Scanner.