Vulnerability Assessment

Proton Pass

Commercial

Data Protection

NordVPN

Commercial

Network Security

Mandos

Commercial

Consulting

Checkmarx SCA

Commercial

Application Security

Orca Security

Commercial

Cloud Security

DryRun

Commercial

Application Security

LATEST ADDITIONS

• 

  Pentera Surface

  Pentera Surface is an external attack surface management platform that continuously maps, monitors, and validates web-facing assets through automated reconnaissance and safe exploitation testing.

  0

  Commercial

  Attack Surface Management

  Attack Surface

  Attack Surface Mapping

  Vulnerability Assessment

  Penetration Testing

  Osint

  Reconnaissance

  Web Security

  Owasp

  Mitre Attack

  Attack Paths

  Vulnerability Scanning

  Security Assessment

  Web App Security

  Threat Detection

  Share

  

  Pentera Surface

  Pentera Surface is an external attack surface management platform that continuously maps, monitors, and validates web-facing assets through automated reconnaissance and safe exploitation testing.

  0

  Commercial

  Attack Surface Management

  Attack Surface

  Attack Surface Mapping

  Vulnerability Assessment

  +11
• 

  Greenbone Web App Scanning

  A professional web application security testing service that performs comprehensive black-box security assessments covering OWASP Top 10 vulnerabilities with manual validation and detailed reporting.

  0

  Commercial

  Application Security

  Web App Security

  Application Security

  Owasp

  Vulnerability Assessment

  Penetration Testing

  Security Testing

  Web Security

  Black Box Testing

  Security Scanning

  Appsec

  Share

  

  Greenbone Web App Scanning

  A professional web application security testing service that performs comprehensive black-box security assessments covering OWASP Top 10 vulnerabilities with manual validation and detailed reporting.

  0

  Commercial

  Application Security

  Web App Security

  Application Security

  Owasp

  +7
• 

  Entersoft Web Application Security

  A comprehensive application security service provider offering manual penetration testing, vulnerability assessment, and security solutions across various industries.

  0

  Commercial

  Application Security

  Application Security

  Penetration Testing

  Vulnerability Assessment

  Web App Security

  Security Testing

  Compliance

  Security Audit

  Vapt

  Security Assessment

  Web Security

  Share

  

  Entersoft Web Application Security

  A comprehensive application security service provider offering manual penetration testing, vulnerability assessment, and security solutions across various industries.

  0

  Commercial

  Application Security

  Application Security

  Penetration Testing

  Vulnerability Assessment

  +7
• 

  CAI (Cybersecurity AI)

  An open-source framework that enables building and deploying AI-powered security automation tools for both offensive and defensive cybersecurity operations using over 300 AI models.

  0

  Free

  AI Security

  Ai

  Ai Powered Security

  Security Automation

  Framework

  Open Source

  Offensive Security

  Penetration Testing

  Vulnerability Assessment

  Reconnaissance

  Exploitation

  Share

  

  CAI (Cybersecurity AI)

  An open-source framework that enables building and deploying AI-powered security automation tools for both offensive and defensive cybersecurity operations using over 300 AI models.

  0

  Free

  AI Security

  Ai

  Ai Powered Security

  Security Automation

  +7
• 

  Resecurity Risk Digital Risk Monitoring Platform

  A digital risk monitoring platform that provides automated security posture assessment, threat intelligence, and continuous monitoring of enterprise digital assets across multiple risk vectors.

  0

  Commercial

  Attack Surface Management

  Attack Surface

  Threat Intelligence

  Monitoring

  Risk Assessment

  Dark Web

  Data Breach

  Cloud Security

  Vulnerability Assessment

  Automation

  Dashboard

  Share

  

  Resecurity Risk Digital Risk Monitoring Platform

  A digital risk monitoring platform that provides automated security posture assessment, threat intelligence, and continuous monitoring of enterprise digital assets across multiple risk vectors.

  0

  Commercial

  Attack Surface Management

  Attack Surface

  Threat Intelligence

  Monitoring

  +7
• 

  Siemba

  A comprehensive Continuous Threat Exposure Management platform that combines AI-driven vulnerability assessment, penetration testing, and attack surface management to help organizations discover, prioritize, and remediate security vulnerabilities.

  0

  Commercial

  Threat Management

  Threat Management

  Vulnerability Management

  Penetration Testing

  Attack Surface

  Ai

  Security Automation

  Compliance

  Cloud Security

  Security Operations

  Vulnerability Assessment

  Share

  

  Siemba

  A comprehensive Continuous Threat Exposure Management platform that combines AI-driven vulnerability assessment, penetration testing, and attack surface management to help organizations discover, prioritize, and remediate security vulnerabilities.

  0

  Commercial

  Threat Management

  Threat Management

  Vulnerability Management

  Penetration Testing

  +7
• 

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  0

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  Data Breach

  Reconnaissance

  Security Research

  Threat Intelligence

  Red Team

  Blue Team

  Vulnerability Assessment

  Share

  

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  0

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  +7
• 

  ImmuniWeb® On-Demand

  ImmuniWeb® On-Demand is a web application penetration testing platform that combines AI-powered automation with manual security testing to provide comprehensive vulnerability assessments and compliance reporting.

  0

  Commercial

  Application Security

  Web Application Security

  Penetration Testing

  Api Security

  Vulnerability Assessment

  Compliance

  Owasp

  Pci Dss

  Gdpr

  Cloud Security

  Devsecops

  Share

  

  ImmuniWeb® On-Demand

  ImmuniWeb® On-Demand is a web application penetration testing platform that combines AI-powered automation with manual security testing to provide comprehensive vulnerability assessments and compliance reporting.

  0

  Commercial

  Application Security

  Web Application Security

  Penetration Testing

  Api Security

  +7
• 

  ImmuniWeb® MobileSuite

  ImmuniWeb MobileSuite is a mobile application penetration testing platform that combines AI-powered automation with manual security testing to assess mobile apps and their backend infrastructure for security vulnerabilities and compliance requirements.

  0

  Commercial

  Application Security

  Mobile Security

  Penetration Testing

  Application Security

  Api Security

  Owasp

  Compliance

  Vulnerability Assessment

  Static Analysis

  Dynamic Analysis

  Android Security

  Ios

  Devsecops

  Security Testing

  Appsec

  Share

  

  ImmuniWeb® MobileSuite

  ImmuniWeb MobileSuite is a mobile application penetration testing platform that combines AI-powered automation with manual security testing to assess mobile apps and their backend infrastructure for security vulnerabilities and compliance requirements.

  0

  Commercial

  Application Security

  Mobile Security

  Penetration Testing

  Application Security

  +11
• 

  Beagle Security

  An automated security testing platform that performs AI-driven penetration testing and vulnerability assessment for web applications and APIs with compliance reporting capabilities.

  0

  Commercial

  Application Security

  Application Security

  Web Security

  Api Security

  Vulnerability Assessment

  Penetration Testing

  Compliance

  Devsecops

  Security Automation

  Security Testing

  Vulnerability Scanning

  Share

  

  Beagle Security

  An automated security testing platform that performs AI-driven penetration testing and vulnerability assessment for web applications and APIs with compliance reporting capabilities.

  0

  Commercial

  Application Security

  Application Security

  Web Security

  Api Security

  +7
• 

  ZeroFox EASM

  A solution that discovers, analyzes, and helps remediate vulnerabilities across an organization's external digital attack surface by identifying and monitoring internet-facing assets.

  0

  Commercial

  Attack Surface Management

  Attack Surface

  Asset Discovery

  Vulnerability Management

  Security Monitoring

  Cloud Security

  Security Scanning

  Vulnerability Assessment

  Risk Management

  Security Posture

  Share

  

  ZeroFox EASM

  A solution that discovers, analyzes, and helps remediate vulnerabilities across an organization's external digital attack surface by identifying and monitoring internet-facing assets.

  0

  Commercial

  Attack Surface Management

  Attack Surface

  Asset Discovery

  Vulnerability Management

  +6
• 

  MazeBolt RADAR

  An automated DDoS vulnerability testing platform that continuously evaluates DDoS protection systems without causing operational downtime.

  0

  Commercial

  Network Security

  Ddos

  Security Testing

  Vulnerability Detection

  Security Monitoring

  Network Security

  Security Analysis

  Vulnerability Assessment

  Security Automation

  Threat Prevention

  Monitoring

  Share

  

  MazeBolt RADAR

  An automated DDoS vulnerability testing platform that continuously evaluates DDoS protection systems without causing operational downtime.

  0

  Commercial

  Network Security

  Ddos

  Security Testing

  Vulnerability Detection

  +7
• 

  Vulcan Cyber

  An enterprise vulnerability and exposure risk management platform that consolidates, prioritizes, and orchestrates remediation of security vulnerabilities across infrastructure, applications, and cloud environments.

  0

  Commercial

  Vulnerability Management

  Vulnerability Management

  Risk Management

  Security Automation

  Cloud Security

  Application Security

  Vulnerability Assessment

  Security Operations

  Compliance

  Threat Intelligence

  Orchestration

  Share

  

  Vulcan Cyber

  An enterprise vulnerability and exposure risk management platform that consolidates, prioritizes, and orchestrates remediation of security vulnerabilities across infrastructure, applications, and cloud environments.

  0

  Commercial

  Vulnerability Management

  Vulnerability Management

  Risk Management

  Security Automation

  +7
• 

  Burp Suite Professional

  A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.

  0

  Commercial

  Offensive Security

  Penetration Testing

  Web Security

  Scanner

  Proxy

  Security Testing

  Vulnerability Assessment

  Api Security

  Burp Suite

  Web App Security

  Security Automation

  Share

  

  Burp Suite Professional

  A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.

  0

  Commercial

  Offensive Security

  Penetration Testing

  Web Security

  Scanner

  +7
• 

  StrikeOne

  StrikeOne is a vulnerability management platform with AI capabilities that helps organizations identify, prioritize, and remediate security vulnerabilities through attack surface management, vulnerability management, and cybersecurity posture assessment.

  0

  Commercial

  Attack Surface Management

  Vulnerability Management

  Ai

  Attack Surface

  Security Scanning

  Vulnerability Prioritization

  Threat Intelligence

  Security Testing

  Compliance

  Vulnerability Assessment

  Security Posture

  Share

  

  StrikeOne

  StrikeOne is a vulnerability management platform with AI capabilities that helps organizations identify, prioritize, and remediate security vulnerabilities through attack surface management, vulnerability management, and cybersecurity posture assessment.

  0

  Commercial

  Attack Surface Management

  Vulnerability Management

  Ai

  Attack Surface

  +7
• 

  XRATOR

  XRATOR is a cybersecurity platform that continuously identifies vulnerabilities, assesses business risks, and manages security posture to align with strategic objectives and compliance requirements.

  0

  Commercial

  Attack Surface Management

  Attack Surface

  Vulnerability Management

  Risk Management

  Security Posture

  Vulnerability Assessment

  Compliance

  Security Monitoring

  Threat Prevention

  Security Analysis

  Security Operations

  Share

  

  XRATOR

  XRATOR is a cybersecurity platform that continuously identifies vulnerabilities, assesses business risks, and manages security posture to align with strategic objectives and compliance requirements.

  0

  Commercial

  Attack Surface Management

  Attack Surface

  Vulnerability Management

  Risk Management

  +7
• 

  Fluid Attacks Continuous Hacking

  An application security testing platform that combines automated scanning, AI assistance, and manual expert testing to provide continuous security assessment throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Security Testing

  Vulnerability Management

  Devsecops

  Sast

  Dast

  Penetration Testing

  Security Automation

  Ai

  Vulnerability Assessment

  Share

  

  Fluid Attacks Continuous Hacking

  An application security testing platform that combines automated scanning, AI assistance, and manual expert testing to provide continuous security assessment throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Security Testing

  Vulnerability Management

  +7
• 

  Bima Scanner

  An automated web application security scanner that evaluates JavaScript library vulnerabilities and HTTP security headers to assess website security posture.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Web Security

  Security Scanning

  Vulnerability Assessment

  Web App Security

  Scanner

  Security Analysis

  Vulnerability Detection

  Javascript

  Share

  

  Bima Scanner

  An automated web application security scanner that evaluates JavaScript library vulnerabilities and HTTP security headers to assess website security posture.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Web Security

  Security Scanning

  +6
• 

  OpenVAS

  OpenVAS is an open-source vulnerability scanner that provides extensive testing capabilities for identifying security weaknesses in networks and systems.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Vulnerability Scanning

  Open Source

  Network Security

  Security Automation

  Vulnerability Assessment

  Share

  

  OpenVAS

  OpenVAS is an open-source vulnerability scanner that provides extensive testing capabilities for identifying security weaknesses in networks and systems.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Vulnerability Scanning

  Open Source

  +3
• 

  AWVS

  A hosted web application security testing tool that enables security researchers to register, activate their accounts, and scan web applications for vulnerabilities.

  0

  Free

  Vulnerability Management

  Appsec

  App Security

  Web App Security

  Vulnerability Scanning

  Vulnerability Assessment

  Web Application Security

  Share

  

  AWVS

  A hosted web application security testing tool that enables security researchers to register, activate their accounts, and scan web applications for vulnerabilities.

  0

  Free

  Vulnerability Management

  Appsec

  App Security

  Web App Security

  +3
• 

  SecurityVulnerability.io

  SecurityVulnerability.io simplifies the process of collecting, enriching, and presenting vulnerability information for both human and machine consumption.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Vulnerability Assessment

  Vulnerability Detection

  Security Information

  Share

  

  SecurityVulnerability.io

  SecurityVulnerability.io simplifies the process of collecting, enriching, and presenting vulnerability information for both human and machine consumption.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Vulnerability Assessment

  Vulnerability Detection

  +1
• 

  Gobuster

  A powerful directory/file, DNS and VHost busting tool written in Go.

  0

  Free

  Network Security

  Dns

  File Scanning

  Vulnerability Assessment

  Penetration Testing

  Share

  

  Gobuster

  A powerful directory/file, DNS and VHost busting tool written in Go.

  0

  Free

  Network Security

  Dns

  File Scanning

  Vulnerability Assessment

  +1
• 

  liffier

  A simple snippet to increment ../ on the URL.

  0

  Free

  Miscellaneous

  Vulnerability Detection

  Web App Security

  Security Audit

  Penetration Testing

  Vulnerability Assessment

  Share

  

  liffier

  A simple snippet to increment ../ on the URL.

  0

  Free

  Miscellaneous

  Vulnerability Detection

  Web App Security

  Security Audit

  +2
• 

  Subfinder

  Fast passive subdomain enumeration tool

  0

  Free

  Network Security

  Subdomain Enumeration

  Dns Lookup

  Web Scraping

  Penetration Testing

  Vulnerability Assessment

  Share

  

  Subfinder

  Fast passive subdomain enumeration tool

  0

  Free

  Network Security

  Subdomain Enumeration

  Dns Lookup

  Web Scraping

  +2
• 

  s3tk

  A security toolkit for Amazon S3 that provides bucket scanning, policy validation, ACL management, and encryption features to identify and remediate S3 security vulnerabilities.

  0

  Free

  Cloud Security

  Aws

  S3

  Cloud Security

  Aws Security

  Security Scanning

  Vulnerability Assessment

  Security Audit

  Cloud Audit

  Data Security

  Encryption

  Policy

  Access Control

  Security Tool

  Share

  

  s3tk

  A security toolkit for Amazon S3 that provides bucket scanning, policy validation, ACL management, and encryption features to identify and remediate S3 security vulnerabilities.

  0

  Free

  Cloud Security

  Aws

  S3

  Cloud Security

  +10
• 

  2tearsinabucket

  A tool for enumerating and analyzing Amazon S3 buckets associated with specific targets to identify potential security misconfigurations.

  0

  Free

  Cloud Security

  S3

  Aws

  Cloud Security

  Enumeration

  Penetration Testing

  Vulnerability Assessment

  Aws Security

  Cloud

  Reconnaissance

  Security Testing

  Share

  

  2tearsinabucket

  A tool for enumerating and analyzing Amazon S3 buckets associated with specific targets to identify potential security misconfigurations.

  0

  Free

  Cloud Security

  S3

  Aws

  Cloud Security

  +7
• 

  surf

  A tool for identifying and exploiting SSRF vulnerabilities in modern cloud environments by filtering host lists to find viable attack candidates.

  0

  Free

  Offensive Security

  Ssrf

  Cloud Security

  Penetration Testing

  Vulnerability Exploitation

  Offensive Security

  Cloud

  Exploitation

  Pentesting

  Security Testing

  Vulnerability Assessment

  Share

  

  surf

  A tool for identifying and exploiting SSRF vulnerabilities in modern cloud environments by filtering host lists to find viable attack candidates.

  0

  Free

  Offensive Security

  Ssrf

  Cloud Security

  Penetration Testing

  +7
• 

  BurpJSLinkFinder

  A Burp Suite extension that passively scans JavaScript files to discover endpoint links and potential attack surfaces in web applications.

  0

  Free

  Application Security

  Burp Suite

  Javascript

  Endpoint Security

  Web Application Security

  Vulnerability Assessment

  Static Analysis

  Dynamic Analysis

  Api Security

  Penetration Testing

  Share

  

  BurpJSLinkFinder

  A Burp Suite extension that passively scans JavaScript files to discover endpoint links and potential attack surfaces in web applications.

  0

  Free

  Application Security

  Burp Suite

  Javascript

  Endpoint Security

  +6
• 

  jaeles

  Jaeles is an automated web application testing tool that helps identify vulnerabilities and security issues through customizable testing scenarios.

  0

  Free

  Application Security

  Web Application Security

  Vulnerability Scanner

  Automation

  Security Testing

  Web Security

  Application Security

  Vulnerability Assessment

  Penetration Testing

  Appsec

  Share

  

  jaeles

  Jaeles is an automated web application testing tool that helps identify vulnerabilities and security issues through customizable testing scenarios.

  0

  Free

  Application Security

  Web Application Security

  Vulnerability Scanner

  Automation

  +6
• 

  Param Miner

  A command-line tool that identifies and extracts parameters from HTTP requests and responses to assist with web application security testing and vulnerability assessment.

  0

  Free

  Application Security

  Web Security

  Vulnerability Assessment

  Http

  Command Line Tool

  Penetration Testing

  Web Application Security

  Security Testing

  Vulnerability Scanning

  Appsec

  Share

  

  Param Miner

  A command-line tool that identifies and extracts parameters from HTTP requests and responses to assist with web application security testing and vulnerability assessment.

  0

  Free

  Application Security

  Web Security

  Vulnerability Assessment

  Http

  +6
• 

  Oralyzer

  A security analysis tool that detects and analyzes open redirection vulnerabilities in web applications.

  0

  Free

  Application Security

  Open Redirect

  Vulnerability Scanner

  Web Application Security

  Security Analysis

  Vulnerability Detection

  Web Security

  Application Security

  Security Testing

  Vulnerability Assessment

  Appsec

  Share

  

  Oralyzer

  A security analysis tool that detects and analyzes open redirection vulnerabilities in web applications.

  0

  Free

  Application Security

  Open Redirect

  Vulnerability Scanner

  Web Application Security

  +7
• 

  s3_objects_check

  A security tool that performs whitebox evaluation of S3 object permissions to identify publicly accessible files and generate reports on potential exposure risks.

  0

  Free

  Cloud Security

  Aws

  S3

  Cloud Security

  Security Assessment

  Aws Security

  Cloud

  Misconfiguration

  Security Audit

  Vulnerability Assessment

  Cloud Compliance

  Share

  

  s3_objects_check

  A security tool that performs whitebox evaluation of S3 object permissions to identify publicly accessible files and generate reports on potential exposure risks.

  0

  Free

  Cloud Security

  Aws

  S3

  Cloud Security

  +7
• 

  parameth

  A brute force parameter discovery tool for identifying hidden GET and POST parameters in web applications during security assessments.

  0

  Free

  Application Security

  Web Application Security

  Penetration Testing

  Brute Force

  Enumeration

  Web Security

  Security Testing

  Vulnerability Assessment

  Reconnaissance

  Application Security

  Share

  

  parameth

  A brute force parameter discovery tool for identifying hidden GET and POST parameters in web applications during security assessments.

  0

  Free

  Application Security

  Web Application Security

  Penetration Testing

  Brute Force

  +6
• 

  metahttp

  A bash script for scanning a target network for HTTP resources through XXE

  0

  Free

  Network Security

  Penetration Testing

  Vulnerability Assessment

  Xxe

  Curl

  Share

  

  metahttp

  A bash script for scanning a target network for HTTP resources through XXE

  0

  Free

  Network Security

  Penetration Testing

  Vulnerability Assessment

  Xxe

  +1
• 

  GitTools

  A collection of three tools for extracting, dumping, and scanning exposed .git repositories on websites to identify sensitive information and security vulnerabilities.

  0

  Free

  Offensive Security

  Offensive Security

  Penetration Testing

  Reconnaissance

  Information Security

  Git

  Web Security

  Vulnerability Assessment

  Sensitive Data

  Pentesting

  Security Testing

  Share

  

  GitTools

  A collection of three tools for extracting, dumping, and scanning exposed .git repositories on websites to identify sensitive information and security vulnerabilities.

  0

  Free

  Offensive Security

  Offensive Security

  Penetration Testing

  Reconnaissance

  +7
• 

  csprecon

  A tool to discover new target domains using Content Security Policy

  0

  Free

  Network Security

  Csp

  Content Security Policy

  Penetration Testing

  Vulnerability Assessment

  Security Research

  Share

  

  csprecon

  A tool to discover new target domains using Content Security Policy

  0

  Free

  Network Security

  Csp

  Content Security Policy

  Penetration Testing

  +2
• 

  s3cario

  S3cario is an AWS S3 bucket security testing tool that validates permissions and identifies potential vulnerabilities through scenario simulation.

  0

  Free

  Cloud Security

  Aws

  S3

  Cloud Security

  Security Testing

  Vulnerability Assessment

  Aws Security

  Cloud

  Penetration Testing

  Security Audit

  Share

  

  s3cario

  S3cario is an AWS S3 bucket security testing tool that validates permissions and identifies potential vulnerabilities through scenario simulation.

  0

  Free

  Cloud Security

  Aws

  S3

  Cloud Security

  +6
• 

  Siemens Simatic PCS 7 Hardening Tool Version 1.0

  A PowerShell security assessment script that evaluates Siemens SIMATIC PCS 7 industrial control systems for security misconfigurations and vulnerabilities.

  0

  Free

  Specialized Security

  Industrial Security

  Scada

  Ics

  Industrial Control Systems

  Powershell

  Security Assessment

  Hardening

  Vulnerability Assessment

  Configuration Management

  Operational Technology

  Share

  

  Siemens Simatic PCS 7 Hardening Tool Version 1.0

  A PowerShell security assessment script that evaluates Siemens SIMATIC PCS 7 industrial control systems for security misconfigurations and vulnerabilities.

  0

  Free

  Specialized Security

  Industrial Security

  Scada

  Ics

  +7
• 

  ThreatDown EDR

  Powerfully simple endpoint security solution that takes down threats without interrupting business.

  0

  Commercial

  Endpoint Security

  Endpoint Security

  Antivirus

  Vulnerability Assessment

  Incident Response

  Endpoint Detection

  Patch Management

  Share

  

  ThreatDown EDR

  Powerfully simple endpoint security solution that takes down threats without interrupting business.

  0

  Commercial

  Endpoint Security

  Endpoint Security

  Antivirus

  Vulnerability Assessment

  +3
• 

  kube-hunter

  kube-hunter is a security scanning tool that identifies vulnerabilities and security weaknesses in Kubernetes clusters through automated assessment and provides detailed reporting with remediation guidance.

  0

  Free

  Vulnerability Management

  Kubernetes

  Kubernetes Security

  Vulnerability Scanning

  Vulnerability Assessment

  Container Security

  Security Scanning

  Penetration Testing

  Security Assessment

  Cloud Security

  Vulnerability Detection

  Share

  

  kube-hunter

  kube-hunter is a security scanning tool that identifies vulnerabilities and security weaknesses in Kubernetes clusters through automated assessment and provides detailed reporting with remediation guidance.

  0

  Free

  Vulnerability Management

  Kubernetes

  Kubernetes Security

  Vulnerability Scanning

  +7
• 

  ParamSpider

  A Python tool that mines URLs from web archives to assist security researchers in discovering potential attack surfaces for bug hunting and vulnerability assessment.

  0

  Free

  Offensive Security

  Python

  Bug Bounty

  Reconnaissance

  Recon

  Url

  Web

  Offensive Security

  Penetration Testing

  Vulnerability Assessment

  Osint

  Share

  

  ParamSpider

  A Python tool that mines URLs from web archives to assist security researchers in discovering potential attack surfaces for bug hunting and vulnerability assessment.

  0

  Free

  Offensive Security

  Python

  Bug Bounty

  Reconnaissance

  +7
• 

  DefectDojo

  OWASP Project for making vulnerability management easier.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Vulnerability Assessment

  Vulnerability Detection

  Collaboration

  Owasp

  Share

  

  DefectDojo

  OWASP Project for making vulnerability management easier.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Vulnerability Assessment

  Vulnerability Detection

  +2
• 

  AuditJS

  AuditJS is a command-line tool that scans JavaScript projects for known vulnerabilities and outdated packages in npm dependencies using the OSS Index API or Nexus IQ Server.

  0

  Free

  Application Security

  Application Security

  Vulnerability Scanning

  Javascript

  Nodejs

  Npm

  Dependency Scanning

  Cli Tool

  Vulnerability Assessment

  Open Source

  Security Scanning

  Share

  

  AuditJS

  AuditJS is a command-line tool that scans JavaScript projects for known vulnerabilities and outdated packages in npm dependencies using the OSS Index API or Nexus IQ Server.

  0

  Free

  Application Security

  Application Security

  Vulnerability Scanning

  Javascript

  +7
• 

  Linux Exploit Suggester (LES)

  A Linux privilege escalation auditing tool that identifies potential kernel vulnerabilities and suggests applicable exploits based on system analysis.

  0

  Free

  Offensive Security

  Privilege Escalation

  Linux

  Vulnerability Assessment

  Penetration Testing

  Exploit

  Kernel

  Cve

  Security Audit

  Pentesting

  Offensive Security

  Share

  

  Linux Exploit Suggester (LES)

  A Linux privilege escalation auditing tool that identifies potential kernel vulnerabilities and suggests applicable exploits based on system analysis.

  0

  Free

  Offensive Security

  Privilege Escalation

  Linux

  Vulnerability Assessment

  +7
• 

  x8

  x8 is a hidden parameters discovery suite that automatically identifies undocumented parameters in web applications and APIs for security testing purposes.

  0

  Free

  Application Security

  Application Security

  Web Security

  Api Security

  Penetration Testing

  Security Testing

  Vulnerability Assessment

  Reconnaissance

  Web Application Security

  Appsec

  Share

  

  x8

  x8 is a hidden parameters discovery suite that automatically identifies undocumented parameters in web applications and APIs for security testing purposes.

  0

  Free

  Application Security

  Application Security

  Web Security

  Api Security

  +6
• 

  APKLeaks

  APKLeaks is a command-line tool that scans Android APK files to identify embedded URIs, endpoints, and secrets for security assessment purposes.

  0

  Free

  Application Security

  Android

  Mobile Security

  Application Security

  Apk

  Static Analysis

  Security Scanning

  Command Line Tool

  Vulnerability Assessment

  Security Audit

  Penetration Testing

  Share

  

  APKLeaks

  APKLeaks is a command-line tool that scans Android APK files to identify embedded URIs, endpoints, and secrets for security assessment purposes.

  0

  Free

  Application Security

  Android

  Mobile Security

  Application Security

  +7
• 

  Conmachi Container Scanner

  A Golang-based container security scanner that identifies potential vulnerabilities and misconfigurations in container environments by checking namespacing, capabilities, security profiles, and host device mounts.

  0

  Free

  Cloud Security

  Container Security

  Containers

  Docker

  Security Scanning

  Vulnerability Assessment

  Golang

  Security Analysis

  Privilege Escalation

  Security Audit

  Devops

  Share

  

  Conmachi Container Scanner

  A Golang-based container security scanner that identifies potential vulnerabilities and misconfigurations in container environments by checking namespacing, capabilities, security profiles, and host device mounts.

  0

  Free

  Cloud Security

  Container Security

  Containers

  Docker

  +7
• 

  AFE Android Framework for Exploitation

  AFE Android Framework for Exploitation is a framework that provides tools and techniques for exploiting vulnerabilities in Android devices and applications.

  0

  Free

  Offensive Security

  Android

  Android Security

  Exploitation

  Penetration Testing

  Vulnerability Assessment

  Mobile Security

  Framework

  Offensive Security

  Security Testing

  Exploit

  Share

  

  AFE Android Framework for Exploitation

  AFE Android Framework for Exploitation is a framework that provides tools and techniques for exploiting vulnerabilities in Android devices and applications.

  0

  Free

  Offensive Security

  Android

  Android Security

  Exploitation

  +7
• 

  CloudJack

  CloudJack identifies subdomain hijacking vulnerabilities in AWS accounts by detecting misconfigurations between Route53 DNS aliases and CloudFront distributions.

  0

  Free

  Cloud Security

  Aws

  Cloud Security

  Vulnerability Assessment

  Subdomain

  Dns

  Security Assessment

  Aws Security

  Vulnerability Scanner

  Share

  

  CloudJack

  CloudJack identifies subdomain hijacking vulnerabilities in AWS accounts by detecting misconfigurations between Route53 DNS aliases and CloudFront distributions.

  0

  Free

  Cloud Security

  Aws

  Cloud Security

  Vulnerability Assessment

  +5
• 

  Webhacking.kr

  Korean cyber-security challenge platform for exploiting and defending web application vulnerabilities.

  0

  Free

  Resources

  Web App Security

  Web Security

  Vulnerability Assessment

  Vulnerability Detection

  Penetration Testing

  Share

  

  Webhacking.kr

  Korean cyber-security challenge platform for exploiting and defending web application vulnerabilities.

  0

  Free

  Resources

  Web App Security

  Web Security

  Vulnerability Assessment

  +2
• 

  AWS Scout2

  AWS Scout2 is a security assessment tool that uses the AWS API to gather configuration data and automatically identify security risks in AWS environments.

  0

  Free

  Cloud Security

  Aws

  Cloud Security

  Security Assessment

  Aws Security

  Cloud

  Security Audit

  Configuration Management

  Security Scanning

  Vulnerability Assessment

  Cloud Compliance

  Share

  

  AWS Scout2

  AWS Scout2 is a security assessment tool that uses the AWS API to gather configuration data and automatically identify security risks in AWS environments.

  0

  Free

  Cloud Security

  Aws

  Cloud Security

  Security Assessment

  +7
• 

  oscap-docker

  A container compliance and vulnerability assessment tool that uses OpenSCAP to scan Docker images and running containers for security vulnerabilities and compliance violations.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Docker

  Container Security

  Compliance

  Vulnerability Assessment

  Docker Security

  Security Scanning

  Cve

  Containers

  Vulnerability Management

  Share

  

  oscap-docker

  A container compliance and vulnerability assessment tool that uses OpenSCAP to scan Docker images and running containers for security vulnerabilities and compliance violations.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Docker

  Container Security

  +7
• 

  AttackSurfaceMapper

  Automate your reconnaissance process with AttackSurfaceMapper, a tool for mapping and analyzing network attack surfaces.

  0

  Free

  Vulnerability Management

  Attack Surface

  Reconnaissance

  Network Discovery

  Vulnerability Assessment

  Security Audit

  Share

  

  AttackSurfaceMapper

  Automate your reconnaissance process with AttackSurfaceMapper, a tool for mapping and analyzing network attack surfaces.

  0

  Free

  Vulnerability Management

  Attack Surface

  Reconnaissance

  Network Discovery

  +2
• 

  snync

  A security tool that detects potential Dependency Confusion attack vectors by identifying private package names that are not reserved on public registries.

  0

  Free

  Application Security

  Application Security

  Dependency Management

  Vulnerability Detection

  Package Security

  Supply Chain Security

  Dependency Scanning

  Security Scanning

  Appsec

  Vulnerability Assessment

  Security Tool

  Share

  

  snync

  A security tool that detects potential Dependency Confusion attack vectors by identifying private package names that are not reserved on public registries.

  0

  Free

  Application Security

  Application Security

  Dependency Management

  Vulnerability Detection

  +7
• 

  Flan

  A vulnerability scanner that helps you identify and fix vulnerabilities in your code

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Vulnerability Detection

  Security Testing

  Penetration Testing

  Vulnerability Assessment

  Share

  

  Flan

  A vulnerability scanner that helps you identify and fix vulnerabilities in your code

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Vulnerability Detection

  Security Testing

  +2
• 

  Azucar

  Azucar is a multi-threaded plugin-based tool that performs read-only security assessments of Azure Cloud environments, analyzing various assets and configurations without modifying deployed resources.

  0

  Free

  Cloud Security

  Azure

  Cloud Security

  Security Assessment

  Multi Threaded

  Plugin

  Active Directory

  Security Audit

  Rbac

  Vulnerability Assessment

  Cloud Compliance

  Share

  

  Azucar

  Azucar is a multi-threaded plugin-based tool that performs read-only security assessments of Azure Cloud environments, analyzing various assets and configurations without modifying deployed resources.

  0

  Free

  Cloud Security

  Azure

  Cloud Security

  Security Assessment

  +7
• 

  ThreatModel for Amazon S3

  A comprehensive library documenting Amazon S3 attack scenarios and risk-based mitigation strategies for cloud storage security.

  0

  Free

  Cloud Security

  Cloud Security

  Aws

  S3

  Threat Modeling

  Risk Assessment

  Aws Security

  Cloud

  Security Assessment

  Threat Analysis

  Vulnerability Assessment

  Share

  

  ThreatModel for Amazon S3

  A comprehensive library documenting Amazon S3 attack scenarios and risk-based mitigation strategies for cloud storage security.

  0

  Free

  Cloud Security

  Cloud Security

  Aws

  S3

  +7
• 

  Windows Privilege Escalation Techniques

  A list of Windows privilege escalation techniques, categorized and explained in detail.

  0

  Free

  IAM

  Windows

  Privilege Escalation

  Security

  Penetration Testing

  Vulnerability Assessment

  Share

  

  Windows Privilege Escalation Techniques

  A list of Windows privilege escalation techniques, categorized and explained in detail.

  0

  Free

  IAM

  Windows

  Privilege Escalation

  Security

  +2
• 

  HTB Academy

  HTB Academy offers guided cybersecurity training with industry certifications to help you become a market-ready professional.

  0

  Free

  Resources

  Cybersecurity

  Training

  Certification

  Pentesting

  Vulnerability Assessment

  Threat Intelligence

  Share

  

  HTB Academy

  HTB Academy offers guided cybersecurity training with industry certifications to help you become a market-ready professional.

  0

  Free

  Resources

  Cybersecurity

  Training

  Certification

  +3
• 

  Nexus Repository Manager Dependency/Namespace Confusion Checker

  A Python script that scans Nexus Repository Manager for artifacts with identical names across repositories to identify dependency confusion attack vulnerabilities.

  0

  Free

  Vulnerability Management

  Vulnerability Scanner

  Dependency Management

  Software Supply Chain

  Python

  Vulnerability Detection

  Package Security

  Supply Chain Security

  Dependency Scanning

  Vulnerability Assessment

  Share

  

  Nexus Repository Manager Dependency/Namespace Confusion Checker

  A Python script that scans Nexus Repository Manager for artifacts with identical names across repositories to identify dependency confusion attack vulnerabilities.

  0

  Free

  Vulnerability Management

  Vulnerability Scanner

  Dependency Management

  Software Supply Chain

  +6
• 

  Linux Exploit Suggester 2

  A Linux exploit suggestion tool that identifies potential privilege escalation vulnerabilities by analyzing kernel versions and matching them against a database of known exploits.

  0

  Free

  Offensive Security

  Exploit

  Privilege Escalation

  Linux

  Penetration Testing

  Vulnerability Assessment

  Cve

  Offensive Security

  Pentesting

  Security Testing

  Exploit Database

  Share

  

  Linux Exploit Suggester 2

  A Linux exploit suggestion tool that identifies potential privilege escalation vulnerabilities by analyzing kernel versions and matching them against a database of known exploits.

  0

  Free

  Offensive Security

  Exploit

  Privilege Escalation

  Linux

  +7
• 

  idb

  idb is a tool that simplifies iOS penetration testing and security research tasks, available in both command line and GUI versions.

  0

  Free

  Offensive Security

  Ios

  Mobile Security

  Penetration Testing

  Pentesting

  Security Research

  Application Security

  Vulnerability Assessment

  Security Testing

  Gui

  Cli

  Share

  

  idb

  idb is a tool that simplifies iOS penetration testing and security research tasks, available in both command line and GUI versions.

  0

  Free

  Offensive Security

  Ios

  Mobile Security

  Penetration Testing

  +7
• 

  Cybersecurity Evaluation Tool (CSET)

  CSET is a free Windows-based tool that helps organizations identify cybersecurity vulnerabilities in enterprise and industrial control systems using hybrid risk and standards-based assessment approaches.

  0

  Free

  Vulnerability Management

  Vulnerability Assessment

  Risk Assessment

  Industrial Control Systems

  Enterprise Security

  Security Assessment

  Vulnerability Management

  Compliance

  Security Standards

  Windows

  Open Source

  Share

  

  Cybersecurity Evaluation Tool (CSET)

  CSET is a free Windows-based tool that helps organizations identify cybersecurity vulnerabilities in enterprise and industrial control systems using hybrid risk and standards-based assessment approaches.

  0

  Free

  Vulnerability Management

  Vulnerability Assessment

  Risk Assessment

  Industrial Control Systems

  +7
• 

  Acunetix Vulnerability Scanner

  A comprehensive web application security testing solution that offers built-in vulnerability assessment and management, as well as integration options with popular software development tools.

  0

  Free

  Application Security

  Appsec

  Appsec Testing

  Integration

  Jenkins

  Docker

  Vulnerability Assessment

  Vulnerability Management

  Share

  

  Acunetix Vulnerability Scanner

  A comprehensive web application security testing solution that offers built-in vulnerability assessment and management, as well as integration options with popular software development tools.

  0

  Free

  Application Security

  Appsec

  Appsec Testing

  Integration

  +4
• 

  Simulator

  A distributed systems simulator that creates intentionally vulnerable Kubernetes clusters in AWS for security training and attack scenario practice.

  0

  Free

  Offensive Security

  Kubernetes

  Kubernetes Security

  Aws

  Container Security

  Offensive Security

  Penetration Testing

  Vulnerability Assessment

  Training

  Simulation

  Educational

  Share

  

  Simulator

  A distributed systems simulator that creates intentionally vulnerable Kubernetes clusters in AWS for security training and attack scenario practice.

  0

  Free

  Offensive Security

  Kubernetes

  Kubernetes Security

  Aws

  +7
• 

  Nessus Cheat Sheet

  A comprehensive reference guide covering Nessus vulnerability scanner configuration, management, API usage, and best practices.

  0

  Free

  Resources

  Vulnerability Scanner

  Vulnerability Scanning

  Cheat Sheet

  Resources

  Scanner

  Vulnerability Management

  Security Tool

  Vulnerability Assessment

  Documentation

  Best Practices

  Share

  

  Nessus Cheat Sheet

  A comprehensive reference guide covering Nessus vulnerability scanner configuration, management, API usage, and best practices.

  0

  Free

  Resources

  Vulnerability Scanner

  Vulnerability Scanning

  Cheat Sheet

  +7
• 

  Alien Vault Ossim

  AlienVault OSSIM provides an all-in-one security management solution with asset discovery, vulnerability assessment, and SIEM capabilities.

  0

  Free

  SIEM

  Asset Inventory

  Vulnerability Assessment

  Intrusion Detection

  Siem

  Share

  

  Alien Vault Ossim

  AlienVault OSSIM provides an all-in-one security management solution with asset discovery, vulnerability assessment, and SIEM capabilities.

  0

  Free

  SIEM

  Asset Inventory

  Vulnerability Assessment

  Intrusion Detection

  +1
• 

  Perimeterator

  A distributed AWS security auditing tool that continuously enumerates and scans internet-facing AWS services to identify potentially misconfigured resources.

  0

  Free

  Attack Surface Management

  Aws

  Aws Security

  Cloud Security

  Attack Surface

  Scanning

  Network Security

  Automation

  Terraform

  Vulnerability Assessment

  Security Audit

  Share

  

  Perimeterator

  A distributed AWS security auditing tool that continuously enumerates and scans internet-facing AWS services to identify potentially misconfigured resources.

  0

  Free

  Attack Surface Management

  Aws

  Aws Security

  Cloud Security

  +7
• 

  Payloads All The Things

  A comprehensive repository of payloads and bypass techniques for web application security testing and penetration testing across multiple platforms and attack vectors.

  0

  Free

  Offensive Security

  Offensive Security

  Penetration Testing

  Web Application Security

  Payloads

  Burp Suite

  Active Directory

  Aws

  Azure

  Linux

  Metasploit

  Windows

  Subdomain Enumeration

  Reverse Shell

  Exploitation

  Vulnerability Assessment

  Security Testing

  Pentesting

  Web Security

  Cloud Security

  Share

  

  Payloads All The Things

  A comprehensive repository of payloads and bypass techniques for web application security testing and penetration testing across multiple platforms and attack vectors.

  0

  Free

  Offensive Security

  Offensive Security

  Penetration Testing

  Web Application Security

  +16
• 

  Cognito Scanner

  A Python script that performs security testing attacks against AWS Cognito services including account creation, user enumeration, and privilege escalation vulnerabilities.

  0

  Free

  Offensive Security

  Aws

  Aws Security

  Offensive Security

  Penetration Testing

  Vulnerability Assessment

  Enumeration

  Privilege Escalation

  Python

  Security Testing

  Share

  

  Cognito Scanner

  A Python script that performs security testing attacks against AWS Cognito services including account creation, user enumeration, and privilege escalation vulnerabilities.

  0

  Free

  Offensive Security

  Aws

  Aws Security

  Offensive Security

  +6
• 

  CAPEC

  CAPEC™ is a comprehensive dictionary of known attack patterns used by adversaries to exploit weaknesses in cyber-enabled capabilities.

  0

  Free

  Threat Management

  Cybersecurity

  Threat Intelligence

  Vulnerability Assessment

  Share

  

  CAPEC

  CAPEC™ is a comprehensive dictionary of known attack patterns used by adversaries to exploit weaknesses in cyber-enabled capabilities.

  0

  Free

  Threat Management

  Cybersecurity

  Threat Intelligence

  Vulnerability Assessment
• 

  NoSQLMap

  NoSQLMap is an open source Python tool that automates NoSQL injection attacks and exploits configuration weaknesses in NoSQL databases to disclose or clone data.

  0

  Free

  Offensive Security

  Python

  Injection

  Penetration Testing

  Database Security

  Vulnerability Assessment

  Automation

  Open Source

  Security Testing

  Offensive Security

  Share

  

  NoSQLMap

  NoSQLMap is an open source Python tool that automates NoSQL injection attacks and exploits configuration weaknesses in NoSQL databases to disclose or clone data.

  0

  Free

  Offensive Security

  Python

  Injection

  Penetration Testing

  +6
• 

  Penetration Testing Execution Standard (PTES)

  A structured approach for conducting penetration tests with seven main sections covering all aspects of the test.

  0

  Free

  Offensive Security

  Penetration Testing

  Security Testing

  Vulnerability Assessment

  Compliance

  Share

  

  Penetration Testing Execution Standard (PTES)

  A structured approach for conducting penetration tests with seven main sections covering all aspects of the test.

  0

  Free

  Offensive Security

  Penetration Testing

  Security Testing

  Vulnerability Assessment

  +1
• 

  Mana Security

  Mana Security is a macOS-focused vulnerability management tool that continuously monitors 100+ applications for security vulnerabilities and tracks patching performance against community benchmarks.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Macos

  Vulnerability Scanning

  Vulnerability Detection

  Cve

  Monitoring

  Mac Security

  Vulnerability Assessment

  Patch Management

  Security Monitoring

  Share

  

  Mana Security

  Mana Security is a macOS-focused vulnerability management tool that continuously monitors 100+ applications for security vulnerabilities and tracks patching performance against community benchmarks.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Macos

  Vulnerability Scanning

  +7
• 

  CloudMapper

  CloudMapper is an AWS security analysis tool that audits configurations, identifies misconfigurations, analyzes IAM policies, finds unused resources, and provides network visualization capabilities.

  0

  Free

  Cloud Security

  Aws

  Cloud Security

  Security Audit

  Aws Security

  Iam

  Security Assessment

  Cloud Compliance

  Vulnerability Assessment

  Asset Inventory

  Network Security

  Security Configuration

  Share

  

  CloudMapper

  CloudMapper is an AWS security analysis tool that audits configurations, identifies misconfigurations, analyzes IAM policies, finds unused resources, and provides network visualization capabilities.

  0

  Free

  Cloud Security

  Aws

  Cloud Security

  Security Audit

  +8
• 

  Attack-Defense Online Lab

  Hands-on cybersecurity training and testing platform with 1800+ labs

  0

  Free

  Resources

  Penetration Testing

  Vulnerability Assessment

  Share

  

  Attack-Defense Online Lab

  Hands-on cybersecurity training and testing platform with 1800+ labs

  0

  Free

  Resources

  Penetration Testing

  Vulnerability Assessment
• 

  WeirdAAL (AWS Attack Library)

  WeirdAAL is an open-source framework that provides tools and libraries for simulating attacks and testing security vulnerabilities in AWS environments.

  0

  Free

  Offensive Security

  Aws

  Aws Security

  Cloud Security

  Penetration Testing

  Security Testing

  Vulnerability Assessment

  Framework

  Open Source

  Red Team

  Offensive Security

  Share

  

  WeirdAAL (AWS Attack Library)

  WeirdAAL is an open-source framework that provides tools and libraries for simulating attacks and testing security vulnerabilities in AWS environments.

  0

  Free

  Offensive Security

  Aws

  Aws Security

  Cloud Security

  +7
• 

  Yasuo

  A Ruby script that scans networks for vulnerable third-party web applications and front-ends with known exploitable security flaws.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Web Security

  Penetration Testing

  Ruby

  Network Scanning

  Web Application Security

  Reconnaissance

  Red Team

  Vulnerability Assessment

  Scanner

  Share

  

  Yasuo

  A Ruby script that scans networks for vulnerable third-party web applications and front-ends with known exploitable security flaws.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Web Security

  Penetration Testing

  +7
• 

  SkyArk

  SkyArk is a cloud security scanning tool that identifies privileged entities in AWS and Azure environments to help mitigate Cloud Shadow Admin threats.

  0

  Free

  Cloud Security

  Cloud Security

  Aws

  Azure

  Privileged Access Management

  Scanner

  Security Assessment

  Iam

  Cloud

  Security Scanning

  Vulnerability Assessment

  Share

  

  SkyArk

  SkyArk is a cloud security scanning tool that identifies privileged entities in AWS and Azure environments to help mitigate Cloud Shadow Admin threats.

  0

  Free

  Cloud Security

  Cloud Security

  Aws

  Azure

  +7
• 

  Kali

  Kali Linux is a specialized Linux distribution for cybersecurity professionals, focusing on penetration testing and security auditing.

  0

  Free

  Offensive Security

  Digital Forensics

  Penetration Testing

  Network Analysis

  Vulnerability Assessment

  Security Testing

  Share

  

  Kali

  Kali Linux is a specialized Linux distribution for cybersecurity professionals, focusing on penetration testing and security auditing.

  0

  Free

  Offensive Security

  Digital Forensics

  Penetration Testing

  Network Analysis

  +2
• 

  AttackerKB

  A platform providing an activity feed on exploited vulnerabilities.

  0

  Free

  Threat Management

  Vulnerability Assessment

  Vulnerability Detection

  Vulnerability Exploitation

  Cve

  Exploit

  Share

  

  AttackerKB

  A platform providing an activity feed on exploited vulnerabilities.

  0

  Free

  Threat Management

  Vulnerability Assessment

  Vulnerability Detection

  Vulnerability Exploitation

  +2
• 

  CVE Scanning of Alpine base images using Multi Stage builds in Docker 17.05

  A Docker MultiStage build implementation that integrates CVE scanning into Alpine Linux container builds using Docker 17.05's build-time vulnerability assessment capabilities.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Docker

  Container Security

  Cve

  Vulnerability Assessment

  Devsecops

  Ci Cd

  Automation

  Linux

  Share

  

  CVE Scanning of Alpine base images using Multi Stage builds in Docker 17.05

  A Docker MultiStage build implementation that integrates CVE scanning into Alpine Linux container builds using Docker 17.05's build-time vulnerability assessment capabilities.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Docker

  Container Security

  +6
• 

  MetaHub

  MetaHub is an open-source vulnerability management tool that provides impact-contextual analysis of security findings in AWS environments through automated contextualization, ownership identification, and prioritization scoring.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Aws

  Aws Security

  Cloud Security

  Vulnerability Assessment

  Automation

  Open Source

  Security Automation

  Vulnerability Analysis

  Risk Assessment

  Share

  

  MetaHub

  MetaHub is an open-source vulnerability management tool that provides impact-contextual analysis of security findings in AWS environments through automated contextualization, ownership identification, and prioritization scoring.

  0

  Free

  Vulnerability Management

  Vulnerability Management

  Aws

  Aws Security

  +7
• 

  IntelligenceX

  Nessus efficiently scans for system vulnerabilities, misconfigurations, and compliance issues.

  0

  Free

  Threat Management

  Vulnerability Assessment

  Vulnerability Scanning

  Compliance

  Security Audit

  Vulnerability Detection

  Share

  

  IntelligenceX

  Nessus efficiently scans for system vulnerabilities, misconfigurations, and compliance issues.

  0

  Free

  Threat Management

  Vulnerability Assessment

  Vulnerability Scanning

  Compliance

  +2
• 

  SmashTheStack Wargaming Network

  A wargaming network for penetration testers to practice their skills in a realistic environment.

  0

  Free

  Offensive Security

  Penetration Testing

  Security Training

  Cyber Range

  Security Testing

  Vulnerability Assessment

  Share

  

  SmashTheStack Wargaming Network

  A wargaming network for penetration testers to practice their skills in a realistic environment.

  0

  Free

  Offensive Security

  Penetration Testing

  Security Training

  Cyber Range

  +2
• 

  SCADAShutdownTool

  An industrial control system testing tool that enables security researchers to enumerate SCADA controllers, read register values, and modify register data across different testing modes.

  0

  Free

  Specialized Security

  Scada

  Industrial Control Systems

  Ics

  Security Testing

  Penetration Testing

  Industrial Security

  Automation

  Security Research

  Vulnerability Assessment

  Specialized Security

  Share

  

  SCADAShutdownTool

  An industrial control system testing tool that enables security researchers to enumerate SCADA controllers, read register values, and modify register data across different testing modes.

  0

  Free

  Specialized Security

  Scada

  Industrial Control Systems

  Ics

  +7
• 

  Nessus Professional

  Advanced vulnerability assessment tool for gaining visibility and preventing cyber attacks.

  0

  Free

  Vulnerability Management

  Vulnerability Assessment

  Vulnerability Detection

  Vulnerability Management

  Attack Surface

  Compliance

  Share

  

  Nessus Professional

  Advanced vulnerability assessment tool for gaining visibility and preventing cyber attacks.

  0

  Free

  Vulnerability Management

  Vulnerability Assessment

  Vulnerability Detection

  Vulnerability Management

  +2
• 

  BeSECURE Vulnerability Management

  A vulnerability assessment and management tool that uses patented technology to accurately identify vulnerabilities and prioritize them by risk.

  0

  Free

  Vulnerability Management

  Vulnerability Assessment

  Vulnerability Management

  Threat Intelligence

  Share

  

  BeSECURE Vulnerability Management

  A vulnerability assessment and management tool that uses patented technology to accurately identify vulnerabilities and prioritize them by risk.

  0

  Free

  Vulnerability Management

  Vulnerability Assessment

  Vulnerability Management

  Threat Intelligence
• 

  Zero Day Initiative Published Advisories

  List of publicly disclosed vulnerabilities with security filters and detailed advisories.

  0

  Free

  Vulnerability Management

  Vulnerability Detection

  Vulnerability Assessment

  Vulnerability Management

  Share

  

  Zero Day Initiative Published Advisories

  List of publicly disclosed vulnerabilities with security filters and detailed advisories.

  0

  Free

  Vulnerability Management

  Vulnerability Detection

  Vulnerability Assessment

  Vulnerability Management
• 

  drozer

  drozer is an open source Android security testing framework that identifies vulnerabilities in mobile apps and devices through Android Runtime and IPC endpoint interaction.

  0

  Free

  Specialized Security

  Mobile Security

  Android

  Android Security

  Penetration Testing

  Vulnerability Assessment

  Security Testing

  Exploit

  Open Source

  Framework

  Python

  Share

  

  drozer

  drozer is an open source Android security testing framework that identifies vulnerabilities in mobile apps and devices through Android Runtime and IPC endpoint interaction.

  0

  Free

  Specialized Security

  Mobile Security

  Android

  Android Security

  +7
• 

  Rudder

  A comprehensive IT infrastructure automation platform for managing hybrid infrastructure through configuration, patch, and security management.

  0

  Free

  Miscellaneous

  Automation

  Infrastructure

  Configuration Management

  Patch Management

  Vulnerability Assessment

  Compliance

  Share

  

  Rudder

  A comprehensive IT infrastructure automation platform for managing hybrid infrastructure through configuration, patch, and security management.

  0

  Free

  Miscellaneous

  Automation

  Infrastructure

  Configuration Management

  +3
• 

  Paros

  A Java based HTTP/HTTPS proxy for assessing web application vulnerability with various useful features.

  0

  Free

  Vulnerability Management

  Appsec

  Proxy

  Web App Security

  Vulnerability Assessment

  Xss

  Sql Injection

  Share

  

  Paros

  A Java based HTTP/HTTPS proxy for assessing web application vulnerability with various useful features.

  0

  Free

  Vulnerability Management

  Appsec

  Proxy

  Web App Security

  +3
• 

  Infection Monkey

  An open-source security tool that simulates network breaches by self-propagating across data centers to test organizational resilience against lateral movement attacks.

  0

  Free

  Offensive Security

  Penetration Testing

  Lateral Movement

  Network Security

  Attack Simulation

  Red Team

  Vulnerability Assessment

  Open Source

  Network Reconnaissance

  Security Testing

  Breach Simulation

  Share

  

  Infection Monkey

  An open-source security tool that simulates network breaches by self-propagating across data centers to test organizational resilience against lateral movement attacks.

  0

  Free

  Offensive Security

  Penetration Testing

  Lateral Movement

  Network Security

  +7
• 

  Cloud Security Research

  A collection of free cloud security research articles by Rhino Security Labs covering AWS, Azure, and GCP security topics including best practices, vulnerability assessments, and threat mitigation strategies.

  0

  Free

  Blogs and News

  Cloud Security

  Aws

  Azure

  Gcp

  Security Research

  Vulnerability Assessment

  Penetration Testing

  Blog

  Educational

  Free Tools

  Share

  

  Cloud Security Research

  A collection of free cloud security research articles by Rhino Security Labs covering AWS, Azure, and GCP security topics including best practices, vulnerability assessments, and threat mitigation strategies.

  0

  Free

  Blogs and News

  Cloud Security

  Aws

  Azure

  +7
• 

  Hakiri Toolbelt

  A command line tool that automates vulnerability scanning of Ruby gems and Rails stack components by identifying CVE vulnerabilities in detected technology versions.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Ruby

  Cli

  Cve

  Vulnerability Assessment

  Dependency Scanning

  Automation

  Vulnerability Detection

  Application Security

  Ruby On Rails

  Share

  

  Hakiri Toolbelt

  A command line tool that automates vulnerability scanning of Ruby gems and Rails stack components by identifying CVE vulnerabilities in detected technology versions.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Ruby

  Cli

  +7