Open Source Vulnerability Management Platform

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

cve-search - a tool to perform local searches for known vulnerabilities

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

🐈Medusa是一个红队武器库平台，目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能，持续开发中

CVE Alerting Platform

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

Vulnerability Labs for security analysis

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

WebMap-Nmap Web Dashboard and Reporting

The Correlated CVE Vulnerability And Threat Intelligence Database API

Automatically Collect POC or EXP from GitHub by CVE ID. If you are unable to find the POC/EXP on GitHub, you can also check here: https://pocorexps.nsa.im/

The EXCLUSIVE Collection of 40,000+ Nuclei templates based on Wordfence intel. Daily updates for bulletproof WordPress security.

漏洞批量验证框架

CVE-2023-38831 winrar exploit generator

ES File Explorer Open Port Vulnerability - CVE-2019-6447

OSINT tool - gets data from services like shodan, censys etc. in one app

汽车/安卓/固件/代码安全测试工具集

A collection of curated Java Deserialization Exploits