Hourly updated database of exploit and exploitation reports

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

Nmap script to detect a Microsoft Exchange instance version with OWA enabled.

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

cve-alerts is a CVE detection and email alert tool that uses the cvelistV5 repository on GitHub.

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

ChatGPT加持的，多人在线协同信息安全报告编写平台。目前支持的报告类型：渗透测试报告，APP隐私合规报告。

Agent scanner for vulners.com

Scalable fuzzing infrastructure.

Stakeholder-Specific Vulnerability Categorization

cve-search - a tool to perform local searches for known vulnerabilities

Security audit Python project dependencies against security advisory databases.

REST API build on top of greenbone-scap

CveMate is a versatile tool for replicating and enriching the NVD CVE list with additional security data sources, all in a local MongoDB database.

Wordfence malware and vulnerability scanner command line utility.

Web service for managing information on vulnerabilities in software distributed through Nixpkgs

Automate open source license compliance and ensure software supply chain integrity

SSL/TLS Scanner

CSAF generator and validator

Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners