Top 20 Python Vulnerability Projects

clusterfuzz

3 5,224 9.8 Python

Scalable fuzzing infrastructure.

Project mention: Fuzzing Ladybird with tools from Google Project Zero | news.ycombinator.com | 2024-03-16

https://github.com/google/clusterfuzz
At least Chromium has integrated multiple different fuzzers into their regular development workflow and found lots of bugs even before going public.

kube-hunter

10 4,630 4.5 Python

Hunt for security weaknesses in Kubernetes clusters
Scout Monitoring

www.scoutapm.com featured

Free Django app performance insights with Scout Monitoring. Get Scout setup in minutes, and let us sweat the small stuff. A couple lines in settings.py is all you need to start monitoring your apps. Sign up for our free tier today.
cve-search

1 2,216 8.5 Python

cve-search - a tool to perform local searches for known vulnerabilities (by cve-search)
rapidscan

1 1,670 4.1 Python

:new: The Multi-Tool Web Vulnerability Scanner.
opencve

21 1,657 4.1 Python

CVE Alerting Platform

Project mention: Auth0 increases price by 300% | /r/webdev | 2023-12-07

dagda

4 1,118 0.0 Python

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

Project mention: General Docker Troubleshooting, Best Practices & Where to Go From Here | dev.to | 2024-01-19

Dagda. A tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in Docker images/containers.

cve-bin-tool

10 1,111 9.8 Python

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

Project mention: FLaNK Stack Weekly 19 Feb 2024 | dev.to | 2024-02-19

InfluxDB

www.influxdata.com featured

Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
PocOrExp_in_Github

1 846 10.0 Python

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.
vulnix

4 416 0.6 Python

Vulnerability (CVE) scanner for Nix/NixOS.
vulnerable-apps

1 214 10.0 Python
inthewilddb

7 195 3.7 Python

Hourly updated database of exploit and exploitation reports
deadshot

2 188 0.0 Python

Deadshot is a Github pull request scanner to identify sensitive data being committed to a repository
SSVC

1 109 9.2 Python

Stakeholder-Specific Vulnerability Categorization
jake

1 103 7.6 Python

Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
scancode.io

1 92 9.4 Python

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!
ochrona-cli

2 52 0.6 Python

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
pip-rating

1 28 9.0 Python

Check the health of your project's requirements and get a score for each dependency.

Project mention: Check the health of your project's requirements and get a score for each dependency | /r/coolgithubprojects | 2023-08-09

bogrod

2 9 6.2 Python

Manage SBOM and VEX like source code

Project mention: Show HN: Manage SBOM vulnerabilities analysis like source code | news.ycombinator.com | 2023-06-08

SLOOTH-Security-Vulnerability-Search-and-Management

1 5 3.4 Python

CS50 Final Project. Utilizing the python NVD API wrapper and REST API, Slooth performs queries specifically for Common Vulnerabilities and Exposures (CVEs), providing a unique identifier known as the CVE ID for stakeholders to discuss and research specific exploits.
pygrype

1 3 6.6 Python

A python wrapper for Anchore Grype

Project mention: I created a simple python wrapper for Grype | /r/SideProject | 2023-08-16

SaaSHub

www.saashub.com featured

SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Python Vulnerabilities related posts

Show HN: Manage SBOM vulnerabilities analysis like source code

1 project | news.ycombinator.com | 8 Jun 2023
how to stay up to date with new CVEs?

1 project | /r/cybersecurity | 25 May 2023
Where do you get your information regarding new vulnerabilities and security risks?

2 projects | /r/sysadmin | 9 May 2023
Introducing Pezzo: Open-source AI Development Toolkit 🚀

2 projects | /r/node | 5 May 2023
PaperCut MF/NG vulnerability

1 project | /r/sysadmin | 20 Apr 2023
Tracking vulnerabilities that your company is effected by.

1 project | /r/cybersecurity | 14 Apr 2023
Getting informed about exploits / CVEs

1 project | /r/sysadmin | 16 Mar 2023
A note from our sponsor - SaaSHub
www.saashub.com | 3 Jun 2024

SaaSHub helps you find the best software and product alternatives Learn more →

Index

What are some of the best open-source Vulnerability projects in Python? This list will help you:

	Project	Stars
1	clusterfuzz	5,224
2	kube-hunter	4,630
3	cve-search	2,216
4	rapidscan	1,670
5	opencve	1,657
6	dagda	1,118
7	cve-bin-tool	1,111
8	PocOrExp_in_Github	846
9	vulnix	416
10	vulnerable-apps	214
11	inthewilddb	195
12	deadshot	188
13	SSVC	109
14	jake	103
15	scancode.io	92
16	ochrona-cli	52
17	pip-rating	28
18	bogrod	9
19	SLOOTH-Security-Vulnerability-Search-and-Management	5
20	pygrype	3