Skip to content

Simpuar/gitlab-cve-scanner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
.github/workflows
.github/workflows
 
 
automation
automation
 
 
img
img
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
gitlab-cve-scanner.py
gitlab-cve-scanner.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

GitLab CVE Scanner

Python License Status

GitLab CVE Scanner is a fast, scriptable scanner to detect GitLab installations, identify their versions, and check for known vulnerabilities via CVEs.
Ideal for bug bounty, Red Team ops, and infrastructure audits.

gitlab_cve_scanner

🔍 Features

  • 🔎 Scans single or multiple GitLab instances
  • 📦 Detects installed GitLab version via HTTP headers
  • ⚠️ Matches version against public CVEs
  • 📊 Outputs clean CSV reports for easy triage
  • 🎯 Supports targeting specific CVEs
  • 💥 Useful for bug bounty, internal audits, Red Team recon

🚀 Usage

python3 scanner.py -u https://gitlab.example.com
python3 scanner.py -l targets.txt

Flags:

  • -u — Single URL
  • -l — List of targets (one per line)
  • -cve — Filter output by specific CVE
  • -o — Save results to CSV

📝 Report Examples

Check for single CVE

Scan for single CVE

Check for all CVEs

Scan for all CVEs

Report for Single CVE

Report for single CVE

Report for Multiple CVEs

Report for single CVE

Credits

The idea of this project is inspired by gitlab-version-nse.

Built with ❤️ for cybersecurity professionals.

About

Python tool to detect GitLab version, check CVEs for it and generate report

Topics

gitlab fingerprint bugbounty vulnerability-detection cve-search penetration-testing-tools

Resources

Readme

License

Apache-2.0 license
Activity

Stars

4 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages