dawnscanner
Vulnerability scanner
A security scanner designed to review web applications for potential vulnerabilities.
Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.
737 stars
33 watching
86 forks
Language: Ruby
last commit: 9 months ago
Linked from 3 awesome lists
codereviewcybersecurityhanamipadrinorailsrubysecuritysecurity-auditsinatravulnerabilities
dreikanter/ruby-bookmarks
jakobthedev/awesome-devsecops
pxlpnk/awesome-ruby-securityRelated projects:
| Repository | Description | Stars |
|---|---|---|
 s0md3v/striker | An offensive information and vulnerability scanner that identifies potential security issues in web applications | 2,234 |
 hahwul/xspear | Automated testing tool for identifying vulnerabilities in web applications via cross-site scripting (XSS) attacks | 1,201 |
 m0nad/hellraiser | Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API | 562 |
 shenril/sitadel | A tool for identifying vulnerabilities in web applications using automated attacks and fingerprinting | 554 |
 0xsauby/yasuo | Scans for vulnerable 3rd-party web applications on a network | 569 |
 r0075h3ll/oralyzer | A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. | 753 |
 menkrep1337/xsscon | A tool designed to scan websites for Cross-Site Scripting (XSS) vulnerabilities | 210 |
 directdefense/superserial | A Burp Suite Extender to identify Java Deserialization vulnerabilities in client requests and server responses. | 9 |
 zupit/horusec | Identifies security flaws in software projects through static code analysis | 1,149 |
 kathanp19/gaussrf | A tool for identifying potential vulnerabilities in websites by fetching known URLs and filtering out ones with open redirects or SSRF parameters. | 165 |
 whwlsfb/log4j2scan | A tool that scans websites for Log4j2 remote code execution vulnerabilities using multiple DNS log platforms and supports various scan types | 773 |
 bitthebyte/eagle | A tool for detecting vulnerabilities in web applications | 110 |
 serain/mailspoof | A tool to analyze and report on SPF and DMARC record issues for potential email spoofing vulnerabilities. | 127 |
 secdec/attack-surface-detector-burp | Identifies web app endpoints and parameters to help detect vulnerabilities | 98 |