Source Code Security Audit (源代码安全审计)

Bandit is a tool designed to find common security issues in Python code.

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

A high performance offensive security tool for reconnaissance and vulnerability scanning

🆕 The Multi-Tool Web Vulnerability Scanner.

A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.

A default credential scanner.

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

A friendly car security exploration tool for the CAN bus

Enumeration sub domains(枚举子域名)

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

[ Admin panel finder / Admin Login Page Finder ] ¢σ∂є∂ ву 👻 (❤-❤) 👻

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

LLM vulnerability scanner

🔎 shodansploit > v1.3.0

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Searches through git repositories for high entropy strings and secrets, digging deep into commit history