Privacy.sexyOpen-source tool to enforce privacy & security best-practices on Windows and macOS, because privacy is sexy 🍑🍆
Rhel7 StigAnsible role for Red Hat 7 STIG Baseline
User.jsuser.js -- Firefox configuration hardening
WazuhWazuh - The Open Source Security Platform
SelfrandoFunction order shuffling to defend against ROP and other types of code reuse
HardentheworldHarden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.
Php Login SystemEmbeddable and Secure PHP Authentication System with Login, Signup, User Profiles, Profile Editing, Account Verification via Email, Password Reset System, Remember-Me Feature and more.
LibrefoxLicense: Mozilla Public License 2.0
KarnSimplifying Seccomp enforcement in containerized or non-containerized apps
Btle SnifferPassively scan for Bluetooth Low Energy devices and attempt to fingerprint them
Rails Security Checklist🔑 Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)
Sandboxed ApiGenerates sandboxes for C/C++ libraries automatically
ContentSecurity automation content in SCAP, OSCAL, Bash, Ansible, and other formats
VulsAgent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
LynisLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Centos7 CisAnsible CentOS 7 - CIS Benchmark Hardening Script
Audit scriptsScripts to gather system configuration information for offline/remote auditing
LibpathrsC-friendly API to make path resolution safer on Linux.
Rhel8 CisCIS Baseline Ansible Role for RHEL 8
CanaryCanary: Input Detection and Response
MarsnakeSystem Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems
StrongholdEasily configure macOS security settings from the terminal.
UsbguardUSBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the system)
Terraform Aws Secure BaselineTerraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
Skf FlaskSecurity Knowledge Framework (SKF) Python Flask / Angular project
SnuffleupagusSecurity module for php7 and php8 - Killing bugclasses and virtual-patching the rest!
JshielderHardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark
Xss Listener🕷️ XSS Listener is a penetration tool for easy to steal data with various XSS.
Rhel7 CisAnsible role for Red Hat 7 CIS Baseline
ThgtoaThe Hitchhiker’s Guide to Online Anonymity
ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
KraneKubernetes RBAC static Analysis & visualisation tool
ElectriceyeContinuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
SIPTorchA "SIP Torture" (RFC 4475) testing suite.