COLLECTED BY

Organization: Archive Team

Formed in 2009, the Archive Team (not to be confused with the archive.org Archive-It Team) is a rogue archivist collective dedicated to saving copies of rapidly dying or deleted websites for the sake of history and digital heritage. The group is 100% composed of volunteers and interested parties, and has expanded into a large amount of related projects for saving online and digital history.

History is littered with hundreds of conflicts over the future of a community, group, location or business that were "resolved" when one of the parties stepped ahead and destroyed what was there. With the original point of contention destroyed, the debates would fall to the wayside. Archive Team believes that by duplicated condemned data, the conversation and debate can continue, as well as the richness and insight gained by keeping the materials. Our projects have ranged in size from a single volunteer downloading the data to a small-but-critical site, to over 100 volunteers stepping forward to acquire terabytes of user-created data to save for future generations.

The main site for Archive Team is at archiveteam.org and contains up to the date information on various projects, manifestos, plans and walkthroughs.

This collection contains the output of many Archive Team projects, both ongoing and completed. Thanks to the generous providing of disk space by the Internet Archive, multi-terabyte datasets can be made available, as well as in use by the Wayback Machine, providing a path back to lost websites and work.

Our collection has grown to the point of having sub-collections for the type of data we acquire. If you are seeking to browse the contents of these collections, the Wayback Machine is the best first stop. Otherwise, you are free to dig into the stacks to see what you may find.

The Archive Team Panic Downloads are full pulldowns of currently extant websites, meant to serve as emergency backups for needed sites that are in danger of closing, or which will be missed dearly if suddenly lost due to hard drive crashes or server failures.

Collection: ArchiveBot: The Archive Team Crowdsourced Crawler

ArchiveBot is an IRC bot designed to automate the archival of smaller websites (e.g. up to a few hundred thousand URLs). You give it a URL to start at, and it grabs all content under that URL, records it in a WARC, and then uploads that WARC to ArchiveTeam servers for eventual injection into the Internet Archive (or other archive sites).

To use ArchiveBot, drop by #archivebot on EFNet. To interact with ArchiveBot, you issue commands by typing it into the channel. Note you will need channel operator permissions in order to issue archiving jobs. The dashboard shows the sites being downloaded currently.

There is a dashboard running for the archivebot process at http://www.archivebot.com.

ArchiveBot's source code can be found at https://github.com/ArchiveTeam/ArchiveBot.

TIMESTAMPS

The Wayback Machine - https://web.archive.org/web/20210723044523/https://github.com/topics/security-scanner

#

security-scanner

Here are 300 public repositories matching this topic...

zaproxy / zaproxy

Star

Open

PII False positive on decimal numbers

5

psiinon commented Jun 2, 2021

Decimal numbers like 52.5702100309281, trigger the PII scan rule, and they shouldnt.
Example page: https://www.discoverireland.ie/limerick/glin-heritage-trails-knight-s-walk

They could be excluded using a similar check to https://github.com/zaproxy/zap-extensions/blob/master/addOns/pscanrulesBeta/src/main/java/org/zaproxy/zap/extension/pscanrulesBeta/PiiScanRule.java#L118-L139

Read more

FalsePositive IdealFirstBug add-on bug

Open

Check file type for XSS

3

Open

Passive scan rule for generating script SRIs

15

Find more good first issues →

CISOfy / lynis

Star

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

linux shell auditing devops unix security-audit pci-dss compliance hardening security-vulnerability security-hardening devops-tools hipaa vulnerability-detection vulnerability-scanners security-scanner vulnerability-assessment gdpr security-tools system-hardening

Updated Jul 22, 2021
Shell

future-architect / vuls

Star

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

go linux golang freebsd security security-audit administrator cybersecurity security-vulnerability vulnerabilities security-hardening vulnerability-detection vulnerability-management vulnerability-scanners security-scanner vulnerability-assessment vuls security-automation security-tools vulnerability-scanner

Updated Jul 23, 2021
Go

wpscanteam / wpscan

Star

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.

wordpress security scanner scan wpscan hacking-tool security-scanner wpvulndb

Updated Jul 19, 2021
Ruby

microsoft / ApplicationInspector

Star

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

detection static-analysis security-scanner security-tools software-characterization application-inspector

Updated Jul 9, 2021
C#

PyCQA / bandit

Star

Open

Docs plugin listing shows title instead of check name

ericwb commented Aug 14, 2018

Describe the bug
In the docs found here:
https://bandit.readthedocs.io/en/latest/plugins/index.html#complete-test-plugin-listing

B109 and B111 show a description instead of a plugin name. This looks inconsistent since all the other plugin names are listed. I believe this is a result of a recent change to remove these deprecated plugins.

To Reproduce

Navigate to https://bandit

Read more

bug good first issue

Open

config file as described in README.rst does not work

3

Open

yaml_load should not be B5xx cryptography group

1

Find more good first issues →

webhintio / hint

Star

Open

[Bug] Enable hint-doctype by default

1

antross commented Apr 13, 2021

This hint has been around since 2018 and is documented on webhint.io (https://webhint.io/docs/user-guide/hints/hint-doctype/). However it's not enabled by default in any of webhint's configurations (likely an oversight).

We should turn this on by default and perform any necessary cleanup in the process (e.g. switching to get locations from webhint's location-aware DOM that was added after the

Read more

good first issue msft-consider type:bug

Open

[Bug] Use `importHelpers: true` in tsconfig.json to reduce code size

4

Open

Allow `stale-while-revalidate` (and `stale-if-error`?) Cache-Control extensions

26

Find more good first issues →

FeeiCN / Cobra

Star

Source Code Security Audit (源代码安全审计)

security-audit cobra security-scanner security-tools sourcecode-analysis code-audit

Updated Jun 30, 2021
Python

k8gege / Ladon

Star

大型内网渗透扫描器&Cobalt Strike，Ladon7.2内置94个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

security tools hack exploit scanner hacking password poc brute-force pentest portscan security-scanner exp security-tools ladon ipscanner getshell netscan

Updated Jul 15, 2021
C#

toolswatch / blackhat-arsenal-tools

Star

Official Black Hat Arsenal Security Tools Repository

hacking blackhat forensics webapp hacking-tool security-scanner security-tools arsenal ics-scada

Updated Jun 2, 2021

awesome-shodan-queries

jakejarvis / awesome-shodan-queries

Star

🔍 A collection of interesting, funny, and depressing search queries to plug into https://shodan.io/

👩‍💻

iot security awesome cloud shodan hacking internet-of-things penetration-testing infosec awesome-list pentesting security-scanner security-tools dorks network-infrastructure shodan-dorks

Updated Aug 7, 2020

evyatarmeged / Raccoon

Star

A high performance offensive security tool for reconnaissance and vulnerability scanning

osint scanner hacking enumeration fuzzing pentesting offensive-security hacking-tool security-scanner vulnerability-assessment information-gathering reconnaissance pentest-tool vulnerability-scanner raccoon

Updated Jul 4, 2021
Python

scipag / vulscan

Star

Advanced vulnerability scanning with Nmap NSE

security security-audit lua exploit lua-script nmap penetration-testing vulnerability vulnerability-databases vulnerability-detection nse vulnerability-identification vulnerability-scanners security-scanner vulnerability-assessment nmap-scripts nsescript nmap-scan-script vulnerability-scanning vulnerability-database-entry

Updated Jun 13, 2021
Lua

ajinabraham / nodejsscan

Sponsor Star

nodejsscan is a static security code scanner for Node.js applications.

nodejs javascript lint security node static-analysis code-analysis code-review security-scanner devsecops sast node-security nodejsscan

Updated Jul 23, 2021
CSS

codingo / Reconnoitre

Star

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Updated Jul 6, 2020
Python

FeeiCN / GSIL

Star

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

security-scanner sensitive-data-security security-tools sensitive-data

Updated May 27, 2021
Python

kube-score

zegl / kube-score

Sponsor Star

Kubernetes object analysis with recommendations for improved reliability and security

go kubernetes security charts automation analysis static-code-analysis ci helm linter kubernetes-monitoring security-scanner kube-score

Updated Jul 16, 2021
Go

shekyan / slowhttptest

Star

Application Layer DoS attack simulator

performance-metrics security-scanner slowhttptest

Updated Jan 15, 2021
C++

intrigueio / intrigue-core

Star

Discover Your Attack Surface!

cli security rubygems osint curl discovery penetration-testing browse convenience vulnerability-scanners security-scanner information-gathering intelligence-gathering reconnaissance attack-surface intrigue

Updated Jul 22, 2021
Ruby

AV1080p / Hacking-With-Golang

Star

Golang安全资源合集

golang security reverse-shell proxy security-scanner buster security-tools

Updated Aug 19, 2020

BishopFox / GitGot

Star

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

python github-api security osint fuzzy-matching recon gists security-scanner security-tools reconnaissance sensitive-data-exposure gist-search

Updated Sep 28, 2020
Python

countercept / doublepulsar-detection-script

Star

A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.

security-scanner security-tools

Updated Feb 3, 2020
Python

ztgrace / changeme

Star

A default credential scanner.

python security penetration-testing infosec security-scanner security-tools default-creds

Updated Apr 26, 2020
Python

XAttacker

Moham3dRiahi / XAttacker

Star

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

wordpress video drupal exploit scanner hacking joomla prestashop pentest exploitation vulnerability-detection hacking-tool security-scanner vulnerability-assessment lokomedia security-tools vulnerability-scanner vulnerability-exploit website-vulnerability-scanner wp-scanner auto-exploiter

Updated Jul 14, 2021
Perl

sn0int

kpcyrd / sn0int

Sponsor Star

Semi-automatic OSINT framework and package manager

rust security intelligence security-audit osint lua location certificate-transparency bug-bounty pentesting recon security-scanner investigation reconnaissance osint-framework

Updated Jun 23, 2021
Rust

denji / golang-tls

Star

Simple Golang HTTPS/TLS Examples

go golang security security-audit awesome tools openssl https http2 secure httpclient libressl security-hardening https-server security-scanner security-tools

Updated Nov 20, 2020

skavngr / rapidscan

Star

🆕 The Multi-Tool Web Vulnerability Scanner.

scanner enumeration penetration-testing vulnerabilities kali-linux vulnerability-detection offensive-security vulnerability-management vulnerability-scanners security-scanner vulnerability-assessment web-vulnerabilities-scanner security-tools oscp reconnaissance vulnerability-scanner penetration-testing-framework kali-scripts scanner-web security-scanning

Updated Jun 17, 2021
Python

Adminisme / ServerScan

Star

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

macos linux golang service-discovery nmap win security-scanner cobalt-strike pentest-tool port-scanner-in-go serverscan

Updated Feb 23, 2021
Go

bloodzer0 / ossa

Star

Open-Source Security Architecture | 开源安全架构

security security-audit ids application-security security-vulnerability vulnerabilities ips vulnerability-scanners security-scanner security-tools code-audit business-security

Updated May 10, 2021

FeeiCN / ESD

Star

Enumeration sub domains(枚举子域名)

brute-force security-scanner security-tools subdomain-scanner subdomain-brute

Updated Jun 13, 2021
Python

Improve this page

Add a description, image, and links to the security-scanner topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the security-scanner topic, visit your repo's landing page and select "manage topics."