Security ToolsCollection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (-31.03%)
TaipanWeb application vulnerability scanner
Stars: ✭ 359 (-51.36%)
AmdhAndroid Mobile Device Hardening
Stars: ✭ 95 (-87.13%)
KraneKubernetes RBAC static Analysis & visualisation tool
Stars: ✭ 254 (-65.58%)
InsiderStatic Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
Stars: ✭ 216 (-70.73%)
HuskyciPerforming security tests inside your CI
Stars: ✭ 398 (-46.07%)
ResourcesA Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Stars: ✭ 62 (-91.6%)
Jsprimea javascript static security analysis tool
Stars: ✭ 556 (-24.66%)
SquealerTelling tales on you for leaking secrets!
Stars: ✭ 97 (-86.86%)
SecurecodeboxsecureCodeBox (SCB) - continuous secure delivery out of the box
Stars: ✭ 279 (-62.2%)
HabuHacking Toolkit
Stars: ✭ 635 (-13.96%)
GosecGolang security checker
Stars: ✭ 5,694 (+671.54%)
Vulny Code Static AnalysisPython script to detect vulnerabilities inside PHP source code using static analysis, based on regex
Stars: ✭ 207 (-71.95%)
Honggfuzz RsFuzz your Rust code with Google-developed Honggfuzz !
Stars: ✭ 222 (-69.92%)
WatchdogWatchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
Stars: ✭ 345 (-53.25%)
LibdiffuzzCustom memory allocator that helps discover reads from uninitialized memory
Stars: ✭ 147 (-80.08%)
Njsscannjsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Stars: ✭ 128 (-82.66%)
NerveNERVE Continuous Vulnerability Scanner
Stars: ✭ 267 (-63.82%)
Apk Meditmemory search and patch tool on debuggable apk without root & ndk
Stars: ✭ 189 (-74.39%)
WssatWEB SERVICE SECURITY ASSESSMENT TOOL
Stars: ✭ 360 (-51.22%)
ApplicationinspectorA source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
Stars: ✭ 3,873 (+424.8%)
Hackertarget🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯
Stars: ✭ 320 (-56.64%)
SalusSecurity scanner coordinator
Stars: ✭ 441 (-40.24%)
BrakemanA static analysis security vulnerability scanner for Ruby on Rails applications
Stars: ✭ 6,281 (+751.08%)
R2fridaRadare2 and Frida better together.
Stars: ✭ 610 (-17.34%)
Embaemba - An analyzer for Linux-based firmware of embedded devices.
Stars: ✭ 607 (-17.75%)
FelixThe Felix Programming Language
Stars: ✭ 609 (-17.48%)
WhalerProgram to reverse Docker images into Dockerfiles
Stars: ✭ 670 (-9.21%)
Articles Translator📚Translate the distinct technical blogs. Please star or watch. Welcome to join me.
Stars: ✭ 606 (-17.89%)
Sentinel AttackTools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
Stars: ✭ 676 (-8.4%)
Rubocop RspecCode style checking for RSpec files
Stars: ✭ 603 (-18.29%)
Git HoundReconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.
Stars: ✭ 602 (-18.43%)
InqlInQL - A Burp Extension for GraphQL Security Testing
Stars: ✭ 715 (-3.12%)
Gg ShieldDetect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.
Stars: ✭ 708 (-4.07%)
SwiftnessxA cross-platform note-taking & target-tracking app for penetration testers.
Stars: ✭ 673 (-8.81%)
HashviewA web front-end for password cracking and analytics
Stars: ✭ 601 (-18.56%)
Terraform Aws Secure BaselineTerraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
Stars: ✭ 596 (-19.24%)
Pyre CheckPerformant type-checking for python.
Stars: ✭ 5,716 (+674.53%)
CrosshairAn analysis tool for Python that blurs the line between testing and type systems.
Stars: ✭ 586 (-20.6%)
StacoanStaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
Stars: ✭ 707 (-4.2%)
Red BaronAutomate creating resilient, disposable, secure and agile infrastructure for Red Teams.
Stars: ✭ 662 (-10.3%)
Scanners BoxA powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑
Stars: ✭ 5,590 (+657.45%)
MonkeyInfection Monkey - An automated pentest tool
Stars: ✭ 5,572 (+655.01%)
SonarqubeContinuous Inspection
Stars: ✭ 6,365 (+762.47%)
PhanPhan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Stars: ✭ 5,194 (+603.79%)
HadolintDockerfile linter, validate inline bash, written in Haskell
Stars: ✭ 6,284 (+751.49%)
DiamorphineLKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)
Stars: ✭ 725 (-1.76%)
Fail2banDaemon to ban hosts that cause multiple authentication errors
Stars: ✭ 6,677 (+804.74%)
HardeningHardening Ubuntu. Systemd edition.
Stars: ✭ 705 (-4.47%)
SpiderfootSpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Stars: ✭ 6,882 (+832.52%)
Phpdoc ParserNext-gen phpDoc parser with support for intersection types and generics
Stars: ✭ 569 (-22.9%)
Kube Scankube-scan: Octarine k8s cluster risk assessment tool
Stars: ✭ 566 (-23.31%)