1383 Open source projects that are alternatives of or similar to Gg Shield Action

Get environment variables exposed by CI services

Linux privilege escalation auditing tool

Tool made to automate tasks of pentesting.

Tools&scripts for daily devops.

Extract uncompiled, uncompressed SPA code from Webpack source maps.

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

550+ DevOps Bash Scripts - AWS, GCP, Kubernetes, Kafka, Docker, APIs, Hadoop, SQL, PostgreSQL, MySQL, Hive, Impala, Travis CI, Jenkins, Concourse, GitHub, GitLab, BitBucket, Azure DevOps, TeamCity, Spotify, MP3, LDAP, Code/Build Linting, pkg mgmt for Linux, Mac, Python, Perl, Ruby, NodeJS, Golang, Advanced dotfiles: .bashrc, .vimrc, .gitconfig, .screenrc, .tmux.conf, .psqlrc ...

A simple CLI tool for vetting npm package versions

Manage and monitor SSH connections.

Free Introduction to Bash Scripting eBook

🐳 Dockerized Zabbix agent with Docker metrics and host metrics support for CoreOS, RHEL, CentOS, Ubuntu, Debian, Fedora, Boot2docker, Photon OS, Amazon Linux, ...

findWebshell是一款基于python开发的webshell检测工具。

💻 A curated list of SSH resources.

Curated list of resources on HashiCorp's Terraform

Deploy a full EKS cluster with Terraform

Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex

The Agile Operations methodology

🕵️‍♂️ Sanity checking containers, vms, and servers

GitHub Action to install any version of Java (GraalVM, Java 8, Java 11, Java 14, ...) via Jabba. Works for any JVM language including Java, Scala and Kotlin.

Feature flagging and remote config service. Host yourself or use our hosted version at https://www.flagsmith.com/

prom2teams is an HTTP server built with Python that receives alert notifications from a previously configured Prometheus Alertmanager instance and forwards it to Microsoft Teams using defined connectors

Abandoned

Manage multiple servers with different operating systems, configurations, requirements etc. for many separate customers in an outsourcing model.

The SharePointDsc PowerShell module provides DSC resources that can be used to deploy and manage a SharePoint farm

Exporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.

Marmot workflow execution engine

Distributed self-replicating programs in Python

Android library helps take screenshots for publishing on Google Play Store.

一行代码检测XP/调试/多开/模拟器/root

Kubernetes Workstation Tools CLI

InSpec: Auditing and Testing Framework

A GitHub Action to run Go commands

A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration

the docker for Apache APISIX

zBang is a risk assessment tool that detects potential privileged account threats

Awesome way to learn together! 🤣

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Cypress + Docker + CircleCI = ❤️

Light NodeJS rate limiting and response delaying using Redis - including Express middleware.

REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and default set of security tools (including MSR's RESTler), that enables developers to embed security tooling into their CI/CD workflows

Open Source Multi-Cloud Integrated Platform

Repositório de código de demonstrações da Maratona Kubernetes 🇧🇷

Command line tool to validate configuration files

Ostent is a server tool to collect, display and report system metrics.

A Patch for Dev-Ops community https://t.me/devOpsPatch

Hashcat web interface

Patch-level verification for Bundler

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

End-To-End File & Message Encryption For Discord

Reference Implementation for Microservices based on Kubernetes and the IBM Container Service.

HackerOne "in scope" domains

🎩 DevOps Scripts

Python script to decode common encoded PowerShell scripts

Run sequences of shell commands against local and remote hosts.

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

A reading/viewing list for larval stage sysadmins and SREs

ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.

Flake8 wrapper to make it nice, legacy-friendly, configurable.