Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

OCaml

Java

HTML

Perl

PowerShell

Emacs Lisp

Zig

Python

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Nix

PHP

Elixir

Erlang

Perl

Ruby

Lua

Kotlin

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇰🇿 Kazakhstan

🇵🇱 Poland

🇧🇻 Bouvet Island

🇮🇳 India

🇬🇼 Guinea-Bissau

🇺🇬 Uganda

🇵🇰 Pakistan

🇱🇺 Luxembourg

All Countries Compare Countries

tenable/poc

Stars
1,181
Rank 38,691 (Top 0.8 %)
Language
Python
License
BSD 3-Clause "New...
Created almost 6 years ago
Updated 4 months ago

tenable/poc

tenable

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Proof of Concepts

Proof of Concepts

As the result of plugin writing or just general bug hunting, researchers at Tenable often stumble upon new and interesting vulnerabilities. These vulnerabililities are shared with the community on our company blog, Medium, or through our research advisories. We've decided to create a more centralized repository for our proof of concepts. Everything is sorted by vendor with subdirectories for each product.

About Issues

Issues have been disabled on this project. The reason is that these aren't projects we are looking to maintain. They are simple proof of concepts we wanted to share with the community.

About the License

The code base uses a very permissive BSD-3 clause license.

terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

routeros

RouterOS Security Research Tooling and Proof of Concepts

nessrest

A python library for using the new Nessus REST API.

pyTenable

Python Library for interfacing into Tenable's platform APIs

ghidra_tools

A collection of Ghidra scripts, including the GPT-3 powered code analyser and annotator, G-3PO.

awesome-llm-cybersecurity-tools

A curated list of large language model tools for cybersecurity research.

pi_sniffer

The pocket-sized wireless sniffer

router_badusb

BadUSB in Routers

upnp_info

A simple script for discovery and analysis of UPnP servers

esp32_image_parser

A toolkit for helping you reverse engineer ESP32 firmware.

DiscordClient

Posh-Nessus

PowerShell Module for automating Tenable Nessus Vulnerability Scanner.

KaiMonkey

KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.

Tenable.io-SDK-for-Python

Tenable.io SDK offers a scalable and safe way to integrate with the Tenable.io platform.

EscalateGPT

An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.

audit_scripts

Scripts to help work with configuration audit files

Burp-extension-for-GPT

an extension for Burp Suite to allow researchers to utilize GPT for analys is of HTTP requests and responses

integration-jira-cloud

yara-rules

Repository of yara rules

terrascan-action

Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practices.

nasl

A parser for NASL.

flask-logging-demo

Demo files for 'The Boring Stuff - Flask Logging' blog post

mIDA

audit_files

Nessus Audit files

Security-Hub

For use in our Tenable.IO to AWS Security Hub integration

terrascan-rego-editor

Visual Studio Code extension for writing Terrascan Rego policies

nasldoc

A documentation generator for NASL.

pedant

A static analysis framework for NASL.

sublimetext-nasl

accurics-action

The Accurics GitHub Action scans Infrastructure as Code files checked into the respository to help ensure that cloud resources are secure and compliant from creation.

Kastle

A purely functional, effectful, resource-safe, kafka library for Scala

csup

Tenable.io Container Security Uploading and Reporting Commandline Tool

microfrontend-demo-app

SinCity

integration-asc

vim-nasl

Vim extensions for programming in NASL

runterrascan.io

golden-ami-pipeline-with-tenable-sample

The golden AMI pipeline enables creation, distribution, verification, launch-compliance, and decommissioning of the golden AMI out of the box. This version of the pipeline integrates with Tenable.io for vulnerability assessments.

container-security-action

Tenable's Container security action which helps scan docker images.

notepadpp-nasl

integration-cef

was-action

Github action to trigger WAS

cloud-snapshot-automation

Templates for creating Cloud Snapshots

splunk-app-pvs

This app provides Splunk dashboards and reporting for Tenable PVS

presentations

integrations-ibm-cloudpak-for-security

Tenable.ad-EventsLogs-Subscriber

Tenable.ad IOA module event logs listener

entra-id-federation-abuse-research-required-roles

UncoverDCShadow

integration-cscc

Tenable.io to Google Cloud Security Command Center Bridge

emacs-nasl

tenablecs_demo

asm-python-examples

Bit Discovery REST API scripts

labs

accurics-vscode

WSUSpendu

nasl-layer

Spacemacs layer for NASL

asm-asset-importer

Scripts to integrate BitDiscovery data with Tenable

atom-grammar-nessuskb

Grammar file for Nessus KB files.

accurics-orb

The Accurics CircleCI Orb scans IaC (Infrastructure as Code) to help identify vulnerabilities prior to cloud deployment.

helm-charts