Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Vulnerability Static Analysis for Containers

OSS-Fuzz - continuous fuzzing for open source software.

A vulnerability scanner for container images and filesystems

A static analysis security vulnerability scanner for Ruby on Rails applications

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Gather and update all available and newest CVEs with their PoC.

A list of web application security

Scalable fuzzing infrastructure.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Snyk CLI scans and monitors your projects for security vulnerabilities.

Hunt for security weaknesses in Kubernetes clusters

快速搭建各种漏洞环境(Various vulnerability environment)

📦 Make security testing of K8s, Docker, and Containerd easier.

scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Awesome Node.js Security resources

HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux

An step by step fuzzing tutorial. A GitHub Security Lab initiative

Automate Your Application Security Orchestration And Correlation (ASOC) Using ArcherySec.