Vulnerability Management for Scanner
Vulnerability management tools for security scanning, penetration testing, bug bounty programs, and vulnerability assessment. Task: Scanner
Browse 27 security tools
FEATURED
USE CASES
Single-host VM vulnerability scanner for SMBs with web app & exploit mapping.
External vulnerability scanning tool for websites and web applications
A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.
An automated reconnaissance tool that crawls domains to discover URLs and scan for exposed secrets, API keys, and sensitive files during security assessments.
A python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
A specialized scanner that detects XSS vulnerabilities in older versions of Swagger-ui implementations.
SQLi-Hunter is an HTTP/HTTPS proxy server and SQLMAP API wrapper that simplifies the identification and exploitation of SQL injection vulnerabilities in web applications.
A command-line script that tests multiple domains from a list for open redirect vulnerabilities and reports findings.
CorsMe is a specialized scanner that identifies Cross-Origin Resource Sharing (CORS) misconfigurations in web applications and provides remediation recommendations.
A multi-threaded scanner for identifying CORS flaws and misconfigurations
A security scanner that identifies Cross-Origin Resource Sharing (CORS) misconfigurations in web applications to detect potential vulnerabilities.
A Python-based command-line tool that scans websites for CORS misconfigurations by analyzing HTTP response headers to identify potential security vulnerabilities.
A JavaScript scanner built in PHP for scraping URLs and other information.
A CLI tool that enhances Nmap with 31 modules containing 459 scan profiles for streamlined network reconnaissance and security assessments.
Dufflebag searches through public AWS EBS snapshots to identify accidentally exposed secrets and sensitive information.
An exploitation framework for industrial security with modules for controlling PLCs and scanning devices.
A next-generation web scanner that identifies websites and recognizes web technologies, including content management systems, blogging platforms, and more.
A Burp Suite plugin that performs intelligent content discovery by analyzing current requests to identify directories, files, and variations based on the application's structure.
A bash-based framework for discovering and extracting exposed .git repositories from web servers during penetration testing and bug bounty activities.