1787 Open source projects that are alternatives of or similar to Burpa

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Web application vulnerability scanner

Web Scan Lazy Tools - Python Package

🔎 shodansploit > v1.3.0

Secure, Unified, Powerful and Extensible Rust Android Analyzer

安全编排与自动化响应平台

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

A Blazing fast Security Auditing tool for Kubernetes

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

InQL - A Burp Extension for GraphQL Security Testing

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

kube-scan: Octarine k8s cluster risk assessment tool

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

syncd是一款开源的代码部署工具，它具有简单、高效、易用等特点，可以提高团队的工作效率.

Ansible dynamic inventory script for Netbox.

[Book-2020] Python For DevOps: Learn Ruthlessly Effective Automation

Intelligence and Reconnaissance Package/Bundle installer.

Dell EMC OpenManage Ansible Modules

💻 make your ssh client smarter

The most flexible build tool for monorepo

Terraform Automation and Orchestration Tool (Open Source)

🚧 Learn the craft of "DevOps" (Developer Operations) to Deploy your App and Monitor it so it stays "Up"!

Open Source Kubernetes Marketplace

pypyr task-runner cli & api for automation pipelines. Automate anything by combining commands, different scripts in different languages & applications into one pipeline process.

Tiny multi-server automation tool

Performing security tests inside your CI

Open source all-in-one CLI tool to semi-automate pentesting.

Collective Knowledge framework (CK) helps to organize black-box research software as a database of reusable components and micro-services with common APIs, automation actions and extensible meta descriptions. See real-world use cases from Arm, General Motors, ACM, Raspberry Pi foundation and others:

🕰️ Monitor your cron jobs

Errbot is a chatbot, a daemon that connects to your favorite chat service and bring your tools and some fun into the conversation.

Ghidra Analysis Enhancer 🐉

Automated software delivery as fast and easy as possible 🚀

A curated collection of publicly available resources on how technology and tech-savvy organizations around the world use Amazon Web Services (AWS)

Sandfly Security Agentless Compromise and Intrusion Detection System For Linux

Digital Rebar Provision is a simple and powerful Golang executable that provides a complete API-driven DHCP/PXE/TFTP provisioning system.

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

DefectDojo is an open-source application vulnerability correlation and security orchestration tool.

Automate security tests using Burp Suite.

Ansible and Kubernetes examples from Ansible for Kubernetes Book

A tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, credentials sent in-the-clear, and shellshock attacks. Currently supports live monitoring and network capture (pcap) scanning.

Improve your code security by running different security checks/validation in a simple way.

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

Plugin to block compilation when unapproved dependencies are used or code styling does not comply.

Kubernetes RBAC static Analysis & visualisation tool

Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities

YARA malware query accelerator (web frontend)

A simple golang application to automate the deployment of software releases.

Bandit is a tool designed to find common security issues in Python code.

a tool to analyze filesystem images for security

secureCodeBox (SCB) - continuous secure delivery out of the box

Linux Bash Shell Script and Python Script For Ops and Devops

bootstrap Kubernetes with k3s over SSH < 1 min 🚀