Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

OSS-Fuzz - continuous fuzzing for open source software.

Vulnerability Static Analysis for Containers

A vulnerability scanner for container images and filesystems

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

A static analysis security vulnerability scanner for Ruby on Rails applications

Gather and update all available and newest CVEs with their PoC.

A list of web application security

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Scalable fuzzing infrastructure.

Snyk CLI scans and monitors your projects for security vulnerabilities.

Hunt for security weaknesses in Kubernetes clusters

📦 Make security testing of K8s, Docker, and Containerd easier.

快速搭建各种漏洞环境(Various vulnerability environment)

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

An step by step fuzzing tutorial. A GitHub Security Lab initiative

Awesome Node.js Security resources

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux