Automatic SQL injection and database takeover tool

Automated All-in-One OS Command Injection Exploitation Tool.

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

File upload vulnerability scanner and exploitation tool.

A high performance offensive security tool for reconnaissance and vulnerability scanning

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

🆕 The Multi-Tool Web Vulnerability Scanner.

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

Toolkit to emulate firmware and analyse it for security vulnerabilities

CORS Misconfiguration Scanner

Mass scan IPs for vulnerable services

A modular vulnerability scanner with automatic report generation capabilities.

Hexrays Toolbox - Find code patterns within the Hexrays ctree

A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.

A python tool to check subdomain takeover vulnerability

Security tools for web vulnerability detection. | 一款兼具本地式与分布式优势、插件外部动态化导入并致力于Web黑盒漏洞探索的轻量级主被动扫描器.

Omnisci3nt – See What They’ve Tried to Hide Extract deep intelligence from any domain. From subdomains to SSL certs, archived secrets to exposed ports — Omnisci3nt gives you the full picture in seconds.

A typical search engine dork scanner scrapes search engines with dorks that you provide in order to find vulnerable URLs.

Collect XSS vulnerable parameters from entire domain.

Wordfence malware and vulnerability scanner command line utility.