Skip to content
#

security-scanner

Star

Here are 303 public repositories matching this topic...

Language: All
Filter by language
All 303 Python 115 Go 23 Shell 21 Java 18 Ruby 15 JavaScript 13 PHP 13 HTML 8 Dockerfile 6 Rust 6
Sort: Best match
Sort options
Best match Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

CISOfy / lynis

Star

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

linux shell auditing devops unix security-audit pci-dss compliance hardening security-vulnerability security-hardening devops-tools hipaa vulnerability-detection vulnerability-scanners security-scanner vulnerability-assessment gdpr security-tools system-hardening
  • Updated Aug 15, 2021
  • Shell

zaproxy / zaproxy

Star
Open

Check file type for XSS

3
jhowlett96
jhowlett96 commented May 21, 2021

Hi,

I am getting some XSS Reflected and persistent alerts generated when a .xls or .pdf file contains unsantised XSS injection strings. I do not want to add an alert filter because it is an .asp page that generates these files and so there could be another XSS vulnerability on the page.

I was wondering if the XSS rule could check the Content-Type header and the file identifying line (first

Read more
enhancement IdealFirstBug add-on good first issue
Find more good first issues

future-architect / vuls

Star

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

go linux golang freebsd security security-audit administrator cybersecurity security-vulnerability vulnerabilities security-hardening vulnerability-detection vulnerability-management vulnerability-scanners security-scanner vulnerability-assessment vuls security-automation security-tools vulnerability-scanner
  • Updated Aug 15, 2021
  • Go

PyCQA / bandit

Star
Find more good first issues

webhintio / hint

Star
Open

[Bug] Enable hint-doctype by default

1
antross
antross commented Apr 13, 2021

This hint has been around since 2018 and is documented on webhint.io (https://webhint.io/docs/user-guide/hints/hint-doctype/). However it's not enabled by default in any of webhint's configurations (likely an oversight).

We should turn this on by default and perform any necessary cleanup in the process (e.g. switching to get locations from webhint's location-aware DOM that was added after the

Read more
type:bug good first issue msft-consider
Find more good first issues
Ladon

k8gege / Ladon

Star

大型内网渗透扫描器&Cobalt Strike,Ladon7.2内置94个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0

security tools hack exploit scanner hacking password poc brute-force pentest portscan security-scanner exp security-tools ladon ipscanner getshell netscan
  • Updated Jul 15, 2021
  • C#

codingo / Reconnoitre

Star

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

security security-audit scanner snmp hacking range enumeration nmap penetration-testing scanning kali-linux offensive-security virtual-hosts hacking-tool security-scanner security-tools oscp service-enumeration services-discovered discover-services
  • Updated Jul 6, 2020
  • Python

Improve this page

Add a description, image, and links to the security-scanner topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the security-scanner topic, visit your repo's landing page and select "manage topics."

Learn more