Alternatives and similar repositories for cis-benchmarks

Users that are interested in cis-benchmarks are comparing it to the libraries listed below

• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆183Updated this week
• vmware-labs / attack-surface-framework
  Tool to discover external and internal network attack surface
  ☆203Updated last year
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆129Updated 4 years ago
• Ebryx / Nessus_Map
  Parse .nessus file(s) and shows output in interactive UI
  ☆159Updated 5 months ago
• RossGeerlings / webstor
  WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted se…
  ☆157Updated last year
• matiassequeira / docker_explorer
  Scan DockerHub images that match a keyword to find secrets.
  ☆60Updated 4 years ago
• nccgroup / ccs
  ☆113Updated 2 years ago
• nccgroup / cloud_ip_ranges
  Identify IP addresses owned by public cloud providers
  ☆126Updated last year
• grines / scour
  ☆126Updated last year
• prjblk / nessus-database-export
  Script to export Nessus results to a relational database for use in reports, analysis, or whatever else.
  ☆70Updated 5 months ago
• PortSwigger / nuclei-burp-integration
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆30Updated 2 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 4 months ago
• reconmap / web-client
  Reconmap's web client written in React. Manage all your pentest projects from a single place.
  ☆51Updated this week
• Patrowl / PatrowlHears
  PatrowlHears - Vulnerability Intelligence Center / Exploits
  ☆165Updated this week
• righel / log4shell_nse
  nse script to inject jndi payloads
  ☆46Updated 3 years ago
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆153Updated 2 months ago
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• primait / nuvola
  ☆140Updated last week
• vengatesh-nagarajan / Cloud-pentest
  Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud
  ☆54Updated 3 years ago
• Orange-Cyberdefense / CVE-repository
  Repository of CVE found by OCD people
  ☆79Updated 3 months ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆67Updated 4 months ago
• nccgroup / whalescan
  Whalescan is a vulnerability scanner for Windows containers, which performs several benchmark checks, as well as checking for CVEs/vulner…
  ☆155Updated 2 years ago
• projectdiscovery / openrisk
  openrisk is a tool that generates a risk score based on the results of a Nuclei scan.
  ☆176Updated this week
• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆89Updated 2 years ago
• NetSPI / aws_consoler
  A utility to convert your AWS CLI credentials into AWS console access.
  ☆246Updated 5 years ago
• darkarnium / Log4j-CVE-Detect
  Detections for CVE-2021-44228 inside of nested binaries
  ☆34Updated 3 years ago
• The-Login / DNS-Analysis-Server
  Tools to assess DNS security.
  ☆152Updated last year
• trinitor / CVE-Vulnerability-Information-Downloader
  Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…
  ☆142Updated 2 years ago
• tenable / audit_files
  Nessus Audit files
  ☆33Updated 2 years ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆51Updated 2 years ago