Open Hub
Black Duck Open Hub

Tags : Browse Projects

Select a tag to browse associated projects and drill deeper into the tag cloud.

OWASP Nettacker

Compare

  Analyzed about 24 hours ago

Automated Penetration Testing Framework OWASP Nettacker project is created to automate information gathering, vulnerability scanning and eventually generating a report for networks, including services, bugs, vulnerabilities, misconfigurations, and other information. This software will utilize TCP ... [More] SYN, ACK, ICMP and many other protocols in order to detect and bypass Firewall/IDS/IPS devices. By leveraging a unique method in OWASP Nettacker for discovering protected services and devices such as SCADA. It would make a competitive edge compared to other scanner making it one of the bests. [Less]

19.5K lines of code

2 current contributors

about 1 month since last commit

3 users on Open Hub

Moderate Activity
5.0
 
0 Reviews
I Use This
Mostly written in Python
Licenses: apache_2
Tags bruteforce infosec iotsecurity networkscanner networksecurity owasp owaspproject penetrationtesting python security securityframework securityscanner

Lynis

Compare

Claimed by CISOfy Analyzed about 3 hours ago

Lynis is an auditing tool for systems running Linux, BSD, or other Unix derivatives. It performs a security scan and determines the hardening state of the machine. Any detected security issues will be provided in the form of a suggestion or warning. Beside security related information it will also ... [More] scan for general system information, installed packages, and possible configuration errors. This software assists with automated auditing, compliance audits (PCI DSS, HIPAA, etc), system hardening, software patch management, vulnerability detection, and malware scanning. It can be run without prior installation. Lynis is typically used by system administrators and security professionals. [Less]

20.4K lines of code

28 current contributors

about 1 month since last commit

3 users on Open Hub

Moderate Activity
5.0
 
0 Reviews
I Use This
Mostly written in shell script
Licenses: gpl3
Tags audit auditing auditor bsd compliance compliancesoftware harden hardening linux lockdown security securitychecker 8 more...

WPScan

Compare

  Analyzed about 23 hours ago

WPScan is a black box WordPress vulnerability scanner.

54.9K lines of code

8 current contributors

5 months since last commit

2 users on Open Hub

Low Activity
5.0
 
0 Reviews
I Use This
Mostly written in JavaScript
Licenses: gpl
Tags auditor blog securitychecker securityframework securityscanner vulnerability vulnerabilityassessment vulnerabilityscanner wordpress

bandit

Compare

Claimed by Python Code Quality Authority Analyzed about 17 hours ago

Python AST-based static analyzer from OpenStack Security Group

0 lines of code

1 current contributors

about 5 years since last commit

1 users on Open Hub

Activity Not Available
0.0
 
0 Reviews
I Use This
Mostly written in language not available
Licenses: apache_2
Tags audit code_analysis OpenStack python security securityscanner staticcodeanalysis vulnerabilityscanner

log4jscanwin

Compare

  Analyzed about 20 hours ago

Log4j Vulnerability Scanner for Windows

212K lines of code

0 current contributors

about 1 year since last commit

1 users on Open Hub

Very Low Activity
0.0
 
0 Reviews
I Use This
Mostly written in C
Licenses: No declared licenses
Tags auditing cve scanner security securitychecker securityscanner vulnerabilityscanner

CoreOS Clair

Compare

  Analyzed 1 day ago

Clair is a container vulnerability analysis service. It provides a list of vulnerabilities that threaten a container, and can notify users when new vulnerabilities that affect existing containers become known.

14.7K lines of code

26 current contributors

7 days since last commit

1 users on Open Hub

Moderate Activity
0.0
 
0 Reviews
I Use This
Mostly written in Go
Licenses: apache_2
Tags container docker go golang security securityscanner vulnerabilityscanner

CakeFuzzer

Compare

  Analyzed about 16 hours ago

Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with minimal false positives. Currently, our focus is on supporting the Cake PHP framework, but soon, it will also be available to other web ... [More] application frameworks. Cake Fuzzer is based on the concept of Interactive Application Security Testing (IAST). Our approach achieves the following objectives: - automated vulnerability discovery for CakePHP-based applications; - elimination of application-specific knowledge or pre-configuration requirements; - minimal or zero false positives in the results; - a user-friendly scanner that requires only basic security knowledge. [Less]

5.48K lines of code

0 current contributors

5 months since last commit

0 users on Open Hub

Very Low Activity
0.0
 
0 Reviews
I Use This
Mostly written in Python
Licenses: AGPL3_or_...
Tags cakephp cybersecurity hacking iast opensource security securitychecker securityscanner securitytesting vulnerabilities vulnerability-scanner vulnerabilityscanner 1 more...

OWASP Dependency-Track

Compare

Claimed by Open Web Application Securi... Analyzed about 24 hours ago

Dependency-Track is a continuous SBOM analysis platform that allows organizations to identify and reduce risk in the software supply chain. Dependency-Track support SBOM, SaaSBOM, HBOM, VDR, and VEX in the OWASP CycloneDX format.

548K lines of code

8 current contributors

1 day since last commit

0 users on Open Hub

Very High Activity
0.0
 
0 Reviews
I Use This
Mostly written in Java
Licenses: gpl3_or_l...
Tags cicd CycloneDX devops devsecops EO14028 HBOM inventory SaaSBOM SBOM security securityscanner SPDX 3 more...

WebBreaker

Compare

  No analysis available

Dynamic Application Security Test Orchestration (DASTO) WebBreaker is a Python client application that provides orchestration for your open-source and commercial, automated web application testing products.

0 lines of code

1 current contributors

0 since last commit

0 users on Open Hub

Activity Not Available
5.0
 
0 Reviews
I Use This
Mostly written in language not available
Licenses: mit, mit
Tags appsec automation fortify scanning security securityscanner securitytesting staticanalysis webbreaker

vuls

Compare

  Analyzed about 11 hours ago

Informs users of the vulnerabilities that are related to the system. Informs users of the servers that are affected. Vulnerability detection is done automatically to prevent any oversight. A report is generated on a regular basis using CRON or other methods. to manage vulnerability.

60.7K lines of code

0 current contributors

about 21 hours since last commit

0 users on Open Hub

Moderate Activity
0.0
 
0 Reviews
I Use This
Mostly written in Go
Licenses: No declared licenses
Tags security-audit securityscanner vulnerabilityscanner