455 Open source projects that are alternatives of or similar to G Scout

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

Open Cloud Security Posture Management Engine

Cloud Security Posture Management (CSPM)

🎯 Server Side Template Injection Payloads

Anteater - CI/CD Gate Check Framework

A tool for auditing security properties of GCP projects.

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads

Biu-framework🚀 Security Scan Framework For Enterprise Intranet Based Services(企业内网基础服务安全扫描框架)

Terraform module for creating alarms for tracking important changes and occurrences from cloudtrail.

Open Service Broker for Google Cloud Platform

GitHub Action for interacting with Google Cloud Platform (GCP)

An operator to fetch secrets from cloud services and inject them in Kubernetes

🕵️‍♀️ MixAudit provides a mix deps.audit task to scan a project Mix dependencies for known Elixir security vulnerabilities

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Wordpress Vulnerability Scanner

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Ghidra Analysis Enhancer 🐉

If you are looking to become a Google Cloud Engineer , then you are at the right place. GCPSketchnote is series where I share Google Cloud concepts in quick and easy to learn format.

A Go implementation of dirsearch.

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Serverless GCP Cloud Functions + Datastore implementation of RealWorld Backend

YAWAST ...where a pentest starts. Security Toolkit for Web-based Applications

proxy poc implementation of STARTTLS stripping attacks

Set of tools to audit SIP based VoIP Systems

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

Resources to prepare for Google Certified Cloud Architect Professional Exam - 2017

Kubernetes-native system managing the full lifecycle of conformant Kubernetes clusters as a service on Alicloud, AWS, Azure, GCP, OpenStack, EquinixMetal, vSphere, MetalStack, and Kubevirt with minimal TCO.

Custom memory allocator that helps discover reads from uninitialized memory

A collection of public security audits.

Study materials for the Google Cloud Professional Data Engineering Exam

Open Source Workflow Engine for Cloud Native Infrastructure

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/

ETL scripts for Bitcoin, Litecoin, Dash, Zcash, Doge, Bitcoin Cash. Available in Google BigQuery https://goo.gl/oY5BCQ

Kotlin/Java API framework for Google Appengine

Declarative way of managing machines for Kubernetes cluster

A repository of tools for pentesting of restricted and isolated environments.

Command line utility for standing up a BOSH director on an IAAS of your choice.

Automated NoSQL database enumeration and web application exploitation tool.

Real Time Big Data / IoT Machine Learning (Model Training and Inference) with HiveMQ (MQTT), TensorFlow IO and Apache Kafka - no additional data store like S3, HDFS or Spark required

The fastest way to get a BUCC (BOSH, UAA Credhub and Concourse)

A simple tool for interacting with OWASP ZAP from the commandline.

MutiCloud_Overlay demonstrates a use case of overlay over one or more clouds such as AWS, Azure, GCP, OCI, Alibaba and a vSphere private infrastructure in Hub and spoke topology, point to point topology and in a Single cloud. Overlay protocols IPv6 and IPv4 are independent of underlying infrastructure. This solution can be integrated with encryption and additional security features.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

This Repository contains the stuff related to windows Active directory environment exploitation

Advanced vulnerability scanning with Nmap NSE

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Send encrypted PGP messages with one click

Audit Windows Security with best Practice

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

nnposter's alternate fingerprint dataset for Nmap script http-default-accounts

Drone plugin for deploying containers to Google Kubernetes Engine (GKE)

InSpec GCP (Google Cloud Platform) Resource Pack

labs guide for completing qwiklabs challenge

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

Identify hardcoded secrets and dangerous behaviours