2 dépôts
Modular components used to extend the capabilities of a security scanner for auditing, crawling, and evasion.
Distinct from Security Scanning Plugins: Shortlist candidates focus on IDE plugins or specific CMS plugins; this is about the general audit framework plugin system
Explore 2 awesome GitHub repositories matching security & cryptography · Security Audit Plugins. Refine with filters or upvote what's useful.
EmDash is an open-source content management system built on Astro that combines a visual admin panel with a plugin-driven architecture and server-side rendering. It provides a complete content management system with structured content modeling, a rich text editor using Portable Text format, and a TypeScript API for type-safe content queries. The system supports authentication through passkeys, OAuth 2.1, and external providers, with role-based access control and fine-grained permission scopes. What distinguishes EmDash is its plugin development framework, which supports both native plugins ru
Runs automated security scans on each plugin version and displays the verdict with a detailed report.
w3af is a web penetration testing suite and security audit framework designed to identify and exploit vulnerabilities in web applications. It functions as a vulnerability scanner that crawls targets to find injection points and a fuzzer used to discover hidden endpoints and test input validation. The project distinguishes itself by providing an intercepting HTTP proxy for capturing and modifying traffic, combined with a knowledge-base driven exploitation system. It enables the execution of security exploits to gain remote shell access and supports post-exploitation activities, such as routing
Provides a modular system to select and tune auditing, bruteforcing, and evasion plugins for customized security analysis.