=2G's Free Web Vulnerability Scanner= *_PROJECT IS IN BETA STAGE / LE PROJET EST EN PHASE BETA ;)_* ==Summary== [ENGLISH] 2GWVS is a free web vulnerability Scanner written in QT (and using only QT's Library to be fully portable). For the moment this software is only able to catch SQL Injec...

目前漏洞报告的方式比较混乱，漏洞发现者无法联系到对应的厂商，厂商也无暇顾及散落在各个blog的漏洞的描述，甚至很大一部分漏洞都因为无法联系也被人遗忘未得到修复。 另外，之前漏洞报告的模式比较简单，没有平台对漏洞进行分类统计和最终的状态进行跟踪，往往出现漏洞报告出去厂商不理和漏洞随便公布导致厂商忙于救火的情况，损害了漏洞发现者的利益也损害了厂商的利益。统一的报告平台将作为中间人的身份对漏洞予以跟踪，确保漏洞被修复也确保漏洞得到厂商的承认。

IOCTL Fuzzer is a tool designed to automate the task of searching vulnerabilities in Windows kernel drivers by performing fuzz tests on them. The fuzzer’s own driver hooks NtDeviceIoControlFile in order to take control of all IRPs throughout the system. While processing IRPs, the fuzzer will...

=Hoktar ?= The main goal of *Hoktar* is to _secure_ your network by handling the long and terrible vulnerability management process. =Features= *Hoktar* is able to : * Import Nessus scan * Email the specified person assigned to a vulnerability asking him to justify it * Generate a wee...

That projects' aim is to have a tool for testing web based applications for developers and app mantainers. The project language is java and some parts may be written in python. That is not a attacking tool it is written for useful purposes to show to developers their mistakes when develop web based...

The Open Source Vulnerability Database (or OSVDB) has made it its goal to provide open-source, vendor-neutral vulnerability information in a coherent manner. But providing the information does not guarantee that users or vendors will be proactive, and hence a vulnerability notification service is re...

==uWebScan.py is an expandable web vulnerabilities scanner written in Python== You can download the latest version from SVN: || *Version* || *Download* || || Development || [http://uwebscan.googlecode.com/svn/trunk/ 1.1-dev] || || Stable || None Yet ||

nessquik is a fast web frontend for the Nessus Vulnerability Scanner. It uses modern javascript technologies to deliver a responsive, easy to use interface that lets people quickly schedule scans using Nessus.

This Firefox extension allows you to check if your bank, webmail, account page or any other site that requires an encrypted session is actually flagging the session cookie securely. This addon is complementary to a paper released by EnableSecurity in August 2008 called "Surf Jack - HTTPS will no...

A script to match the NetBSD vulnerability database against Arch Linux packages (both from official repositories and some unofficial packages from AUR).