cve-scanning

cve-search - a tool to perform local searches for known vulnerabilities

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Finding potential software vulnerabilities from git commit messages

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

A compilation of resources in the software supply chain security domain, with emphasis on open source

National Vulnerability Database dependency checker for Clojure projects

the blazing-fast pentesting suite.

SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.

RouterOS Security Inspector

PoC_CVEs

A simple framework for sending test payloads for known web CVEs.

NIST-based CVE lookup store and API powered by Rust.

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

Check linux sources dump for known CVEs.

Zed Attack Proxy Scripts for finding CVEs and Secrets.

The goal of this project is to provide additional features on top of the existing npm audit options

不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。

OWASP Kubernetes security and compliance tool [WIP]

Nmap script to detect a Microsoft Exchange instance version with OWA enabled.