Repository navigation

#

attack-surface

projectdiscovery / nuclei 

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

cve-scannersubdomain-takeovernuclei-enginevulnerability-detectionvulnerability-assessmentvulnerability-scanner安全attack-surfacesecurity-scannerHacktoberfestdast
Go
22968
1 天前
1N3/Sn1per
1N3 / Sn1per 

Attack Surface Management Platform

sn1perattack-surfaceCybersecuritypentest-toolpentesting-toolspentest-scriptspentest-toolshacking-toolsosint-toolosint-frameworkattacksurfacepenetration-testingpentesting安全attack-surface-managementHacking
Shell
8661
2 个月前
j3ssie/osmedeus
j3ssie / osmedeus 

A Workflow Engine for Offensive Security

scanningreconnaissancepenetration-testing安全pentest-toolhacking-toolinformation-gatheringHackingOSINTBug BountypentestingGoattack-surfaceattack-surface-management
Go
5561
2 个月前
microsoft / AttackSurfaceAnalyzer 

Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

安全attack-surface
C#
2814
9 天前
projectdiscovery / uncover 

Quickly discover exposed hosts on the internet using multiple search engines.

asmattack-surfaceBug Bounty命令行界面OSINTReconnaissancereconnaissance
Go
2583
3 天前
intrigueio / intrigue-core 

Discover Your Attack Surface!

security-scannerOSINTvulnerability-scannerspenetration-testing安全attack-surfacereconnaissanceintriguediscoveryintelligence-gatheringinformation-gathering
Ruby
1374
2 年前
superhedgy/AttackSurfaceMapper
superhedgy / AttackSurfaceMapper 

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

reconnaissanceOSINTsubdomainsPythonattack-surfacelinkedin
Python
1354
1 年前
chiasmod0n / chiasmodon 

Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including domain emails, domain credentials, CIDRs , ASNs , and subdomains, the tool also allows users to search Google Play application ID.

asnattack-surfaceBug Bountybugbounty-toolcidrcredentialsemail-enumerationemailsinformation-gatheringintelligenceintelligence-analysisOSINTreconnaissancesubdomain-enumerationsubdomains
Python
573
5 天前
3nock / OTE 

OSINT Template Engine

安全OSINTReconnaissancesubdomaininformation-gatheringC++attack-surfaceQtGUICybersecurityfootprintingHackingintelligence-gatheringreconnaissance
C
539
2 年前
johnnyxmas / ScanCannon 

External attack surface discovery, enumeration and reconnaissance for massive networks

asset-managementattack-surfaceenumerationhacking-toolpenetration-testingpentestingreconnaissance
Shell
446
1 个月前
attacksurge / awesome-attack-surface-monitoring 

Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.

attack-surfacescannerspentest-toolBug Bounty
387
6 个月前
BishopFox / smogcloud 

Find cloud assets that no one wants exposed 🔎 ☁️

安全amazonawscloud-securityapi-documentationAmazon Web Servicesattack-surfacepenetration-testingcloudCybersecurityblueteam
Go
341
5 年前
vmfunc / sif 

the blazing-fast pentesting suite.

attack-surfacecve-scannercve-scanningCybersecurityHacktoberfestpentestpentest-scriptspentest-toolpentesting安全vulnerability-detectionvulnerability-scanners
Go
235
1 天前
RossGeerlings / webstor 

WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted servers via zone transfer data - stores their responses, and lets you query for known web technologies, including those with zero-day vulnerabilities.

Cybersecurity安全pentest-scriptspentest-toolspentestingpentesting-toolsattack-surfaceinformation-gatheringBug Bountybugbounty-toolreconnaissanceReconnaissancefootprinting
Python
157
1 年前
1N3 / AttackSurfaceManagement 

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

attack-surfaceattacksurfaceBug Bountybugbounty-toolvulnerability-scannersvulnerability-managementredteam-toolspenetration-testingpenetration-testing-toolspenetration-testing-frameworkhacking-toolshacking-toolCybersecurityreconnaissanceautomatedOSINT
Shell
93
4 年前
TalMaIka / Site-Scanner 

Site-Scanner - Web application vulnerability assessment tool.

cms-detectorcybersecurity-tools安全sqlinjectionvulnerability-detectionattack-surfacehacking-toolspenetration-testingpentest-scriptsxss-exploitation
Python
48
9 个月前
owasp-amass / amass-docker-compose 

OWASP Amass Docker Compose for setting up a full instance of the infrastructure

asmattack-surfaceattack-surface-managementdiscoveryDocker ComposeowaspReconnaissancevisibility
Shell
40
1 个月前
lightspin-tech / lightspin-2022-top-7-attack-paths 

Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a list of the 2022 Top 7 Cloud Attack Paths across AWS, Azure, GCP, and Kubernetes as seen on the Lightspin Cloud Native Application Protection Platform.

attack-pathsattack-surfaceaws-securityazure-securitycloud-securitycloudsecuritygcp-securitymitre-attack
40
3 年前
Krypteria / Seekolver 

Seekolver is a tool focused on attack-surface mapping. It performs searches for subdomains associated with root domains and root domains associated with organisations using open sources, additionally, it resolves these domains and subdomains in search of HTTP and HTTPS services and then filters the information obtained based on their response.

attack-surfacednsinformation-gatheringOSINTosint-reconnaissancePythonsubdomain-scanner
Python
39
1 年前
dreizehnutters / vide 

Minimal web server enumeration & attack surface detection tool based on results of nmap.

ctfenumeration-toolpentestingattack-surfacepentest-toolReconnaissance
Shell
38
7 个月前