790 Open source projects that are alternatives of or similar to ggshield

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

This repository includes cloud security policies for IaC and live resources.

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Growing repository of Infrastructure as Code demos (initially created for DevOps Wall Street)

LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.

Knowledge seeks no man

Detect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.

Know the dangers of credential reuse attacks.

A list of awesome IaC testing articles, speeches & links. Especially about Ansible.

GitGuardian Shield GitHub Action - Find exposed credentials in your commits

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.

This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.

Detect, track and alert on infrastructure drift

tfu is a terraform helper to update the providers.

Centralize Vulnerability Assessment and Management for DevSecOps Team

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Managing multiple environments with Terraform made easy

Deploy single vSphere VM with Terraform - template.

Scrap quotes from Goodreads and schedule random tweets.

ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.

An example pipeline for executing HashiCorp Terraform with ephemeral cloud provider credentials managed by HashiCorp Vault

Multi node IBM Cloud Private Community Edition 3.2.x w/ Kubernetes 1.13.5 in a Box. Terraform, Packer and BASH based Infrastructure as Code script sets up a multi node LXD cluster, installs ICP-CE and clis on a metal or VM Ubuntu 18.04 host.

Security scanner for your Terraform code

Extensible auto-tagger for your IaC files. The ultimate way to link entities in the cloud back to the codified resource which created it.

Big Bang is a declarative, continuous delivery tool for core DoD hardened and approved packages into a Kubernetes cluster.

Validate infrastructure as code (IaC) and DevOps repositories using Azure Pipelines.

GitHub Data Loss Prevention (DLP) Action: Scan Pull Requests for sensitive data, like credentials & secrets, PII, credit card numbers, and more.

Terraform Modules by Peak

Heat examples tested against the SysEleven Stack infrastructure cloud.

Pulumi - Developer-First Infrastructure as Code. Your Cloud, Your Language, Your Way 🚀

mXtract - Memory Extractor & Analyzer

Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres and MySQL)

🔑 Free Offline Password Manager

💯 Get a notification in Slack every time someone asks you to check some code on Github or Bitbucket.

🔒Unified API for password hashing algorithms

Crawler (Bot) searching for credential leaks on different paste sites.

🎩 The mighty NodeJS password vault

PowerShell module for KeePass

Deprecated RTSP media server -- Use github.com/aler9/rtsp-simple-server instead.

Private key usage verification

An HTML generator for Valgrind's Memcheck tool

API HTTP et Script pour trouver les villes à partir d'un code postal et code postaux à partir d'une ville

Passwords Recovery Tool

Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in memory

This repository will be updated with all the examples and links that I can find with relevant knowledge & information about CP in MS Windows vista up to version 10.

KeePass 2.x plugin which imports credentials from various browsers.

Detect secrets in your request/response using secretlint.

Magento 2 AWS autoscaling cluster with Terraform and Packer or ImageBuilder. Adobe Commerce Cloud alternative. The best ecommerce infrastructure. Drive more sales online. Transparent billing. Developer-friendly. No hidden bottlenecks.

Workflows and helper scripts around the PlanetScale DB workflow to automate database branch creation, association, update and merge directly out of your pull/merge request or favourite CI/CD.

CyberArk Enterprise Password Vault API CLI tool

A simple Python script that reads a text file with lots of e-mails and passwords, and tries to check if those credentials are valid by trying to login on IMAP servers.

A CloudFormation custom resource provider for deploying secrets and keys

Create a QR code with your Wi-Fi login details

Macaroons: bearer credentials with caveats for distributed authorization

A linter to prevent exception handling antipatterns in Python (limited only for those who like dinosaurs).

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Go scripts for finding sensitive data like API key / some keywords in the github repository

DLL Password Filter Implant with Exfiltration Capabilities

Credential classes to access Kubernetes clusters

@hashicorp Vault Token Helper for macOS, Linux and Windows with support for secure token storage and multiple Vault servers 🔐