587 Open source projects that are alternatives of or similar to Audit_scripts

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Simple Golang HTTPS/TLS Examples

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

A Go implementation of dirsearch.

Ghidra Analysis Enhancer 🐉

A Blazing fast Security Auditing tool for Kubernetes

A curated list of security resources for a Ruby on Rails application

Kubernetes RBAC static Analysis & visualisation tool

Web-based Source Code Vulnerability Scanner

Tool for complete hardening of Linux boot chain with UEFI Secure Boot

Custom memory allocator that helps discover reads from uninitialized memory

NebulousAD automated credential auditing tool.

Ansible role to apply a security baseline. Systemd edition.

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

This is the official main repository for the Assimilation project

Provides various Windows Server Active Directory (AD) security-focused reports.

Web Scan Lazy Tools - Python Package

Open-source tool to enforce privacy & security best-practices on Windows and macOS, because privacy is sexy 🍑🍆

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

🕷️ XSS Listener is a penetration tool for easy to steal data with various XSS.

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

Security Knowledge Framework (SKF) Python Flask / Angular project

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

Linux命令转发记录

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Automated NoSQL database enumeration and web application exploitation tool.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Patch-level verification for Bundler

Set of tools to audit SIP based VoIP Systems

Want to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

Source Code Security Audit (源代码安全审计)

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

InQL - A Burp Extension for GraphQL Security Testing

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

a tool to analyze filesystem images for security

一键提取安卓应用中可能存在的敏感信息。

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Canary: Input Detection and Response

kube-scan: Octarine k8s cluster risk assessment tool

🎖safely* install packages with npm or yarn by auditing them as part of your install process

A collection of awesome security hardening guides, tools and other resources

Web application vulnerability scanner

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

Hardening Ubuntu. Systemd edition.

A static analysis security vulnerability scanner for Ruby on Rails applications

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Simplifying Seccomp enforcement in containerized or non-containerized apps

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Hacking Toolkit