cve-search - a tool to perform local searches for known vulnerabilities

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Finding potential software vulnerabilities from git commit messages

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

A compilation of resources in the software supply chain security domain, with emphasis on open source

National Vulnerability Database dependency checker for Clojure projects

SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.

🚀 blazing-fast pentesting suite written in Go

PoC_CVEs

A simple framework for sending test payloads for known web CVEs.

Check linux sources dump for known CVEs.

NIST-based CVE lookup store and API powered by Rust.

Zed Attack Proxy Scripts for finding CVEs and Secrets.

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。

The goal of this project is to provide additional features on top of the existing npm audit options

OWASP Kubernetes security and compliance tool [WIP]

Nmap script to detect a Microsoft Exchange instance version with OWA enabled.

Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )