一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Passive Security Scanner (被动式安全扫描器)

Burp被动扫描流量转发插件

被动式漏洞扫描系统

myscan 被动扫描

Wscan is a web security scanner that focuses on web security, dedicated to making web security accessible to everyone.

基于Burp插件开发打造渗透测试自动化

Paskto - Passive Web Scanner

🔭 Collection of regexp pattern for security passive scanning

基于burpsuite headless 的代理式被动扫描系统

Light Armoured Recon is a python script designed to automate passive recon. It automates execution of TheHarvester, whois, Robtex.com, Builtwith.com, DNSrecon, metagoofil, & knockpy.

active / passive network scanner

Honeyscanner: A vulnerability analyzer for honeypots

PyBurp Allows you to modify Burp Suite proxy requests and responses with simple Python code, supports remote invocation of encryption and decryption methods in browsers or apps, greatly facilitating security professionals in performing security testing on encrypted HTTP request and response transactions.

A passive online scanner from OWTF

JitterBug passively searches for Basic Info, open ports, potential CVE's on the given Target IP in third party databases without Direct interaction with the target

分布式被动SQL注入检测系统

A shell script to link the output of some of my favorite security scanning tools. This tool features both active and passive scanning. TRY THIS AT HOME!... And never against networks you do not have absolute permission to do so on. As always, I am 100% not responsible for how you use this script, and express no warranty.

Passive Vulnerability Scanner working with Wappalyzer API and MITRE CVE search functionnality.

passive device fingerprinting api for network intrustion detection