607 Open source projects that are alternatives of or similar to assimilation-official

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

secureCodeBox (SCB) - continuous secure delivery out of the box

Ansible playbook roles for security

Wigo, aka "What Is Going On" is a light pull/push monitoring tool written in Golang.

🔐 Shim to easily install OWASP dependency-check-cli into Python projects

Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Web Scan Lazy Tools - Python Package

Scripts to gather system configuration information for offline/remote auditing

Ansible role for Ubuntu 2004 CIS Baseline

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Hardening Ubuntu. Systemd edition.

Provides various Windows Server Active Directory (AD) security-focused reports.

A curated list of security resources for a Ruby on Rails application

Helps you continuously monitor and fix common security vulnerabilities in your Django application.

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Security Knowledge Framework (SKF) Python Flask / Angular project

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

🔑 Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

A repository of tools for pentesting of restricted and isolated environments.

Want to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

A general purpose metrics monitor implemented with Apache Spark. Kafka source, Elastic sink, aggregate metrics, different analysis, notifications, actions, live configuration update, missing metrics, ...

A simple tool for interacting with OWASP ZAP from the commandline.

dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Ansible CentOS 7 - CIS Benchmark Hardening Script

Tool for complete hardening of Linux boot chain with UEFI Secure Boot

Unified monitoring wallboard — Light, ergonomic and reliable monitoring for anything.

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Automated Security Testing For REST API's

⚡️ Docker official image for Wallarm Node. API security platform agent.

DefectDojo is an open-source application vulnerability correlation and security orchestration tool.

Enables and use of the concept of security in your Delphi applications

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

a tool to analyze filesystem images for security

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

Simple Golang HTTPS/TLS Examples

Web application vulnerability scanner

All-in-one tool for managing vulnerability reports from AppSec pipelines

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

NebulousAD automated credential auditing tool.

Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common misconfigurations and security holes.

**[ARCHIVED]** website changes tracker 🔍

Offline-, mobile-first graph note-taking app focused on performance with the knowledgebase of any scale

An API-first distributed deployment system of deep learning models using timeseries data to predict the behaviour of systems

Deep Security's APIs make it simple to integration with a variety of AWS Services

Kubetools - Curated List of Kubernetes Tools

syscmdb系统

Python API bindings for FireEye Products

Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.

XDMF parallel partitioned mesh I/O on top of HDF5

Wazuh - Tools for packages creation