Gg ShieldDetect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.
Stars: ✭ 708 (-93.27%)
vimana-frameworkVimana is an experimental security framework that aims to provide resources for auditing Python web applications.
Stars: ✭ 47 (-99.55%)
DevSecOpsUltimate DevSecOps library
Stars: ✭ 4,450 (-57.7%)
Bank VaultsA Vault swiss-army knife: a K8s operator, Go client with automatic token renewal, automatic configuration, multiple unseal options and more. A CLI tool to init, unseal and configure Vault (auth methods, secret engines). Direct secret injection into Pods.
Stars: ✭ 1,316 (-87.49%)
secretA tiny secret store to keep your little secrets
Stars: ✭ 52 (-99.51%)
MixewayHubMixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.
Stars: ✭ 80 (-99.24%)
SecretlintPluggable linting tool to prevent committing credential.
Stars: ✭ 239 (-97.73%)
gitavscanGit Anti-Virus Scan Action - Detect trojans, viruses, malware & other malicious threats.
Stars: ✭ 23 (-99.78%)
nmap-formatterA tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot). Simply put it's nmap converter.
Stars: ✭ 129 (-98.77%)
TalismanBy hooking into the pre-push hook provided by Git, Talisman validates the outgoing changeset for things that look suspicious - such as authorization tokens and private keys.
Stars: ✭ 1,155 (-89.02%)
EnvchainEnvironment variables meet macOS Keychain and gnome-keyring <3
Stars: ✭ 876 (-91.67%)
safekeeperCommand-line tool integrating with go:generate to replace substitute tokens with ENV variables value.
Stars: ✭ 63 (-99.4%)
tfquerytfquery: Run SQL queries on your Terraform infrastructure. Query resources and analyze its configuration using a SQL-powered framework.
Stars: ✭ 297 (-97.18%)
kdtCLI to interact with Kondukto
Stars: ✭ 18 (-99.83%)
cscannerAn open source, multi-cloud DevSecOps compliance checker
Stars: ✭ 19 (-99.82%)
prowlerProwler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
Stars: ✭ 8,046 (-23.52%)
posteeSimple message routing system that receives input messages through a webhook interface and can enforce actions using predefined outputs via integrations.
Stars: ✭ 160 (-98.48%)
React Native Linkedin🔗 React-Native LinkedIn, a simple LinkedIn login library for React-Native or Expo with WebView and Modal
Stars: ✭ 180 (-98.29%)
interceptINTERCEPT / Policy as Code Static Analysis Auditing / SAST
Stars: ✭ 54 (-99.49%)
SecretserverSecret Server PowerShell Module
Stars: ✭ 82 (-99.22%)
ghostA simple, server/less, single-api, multi-backend, ghostly secret-store/key-store for your passwords, ssh-keys and cloud credentials. Ghost isn't real, it's just in your head.
Stars: ✭ 36 (-99.66%)
Get Aws Profile BashFetch AWS keys and secrets from ~/.aws/credentials using a simple bash script
Stars: ✭ 49 (-99.53%)
introspectorA schema and set of tools for using SQL to query cloud infrastructure.
Stars: ✭ 61 (-99.42%)
WavevoteVoting system based on Ethereum
Stars: ✭ 22 (-99.79%)
TrufflehogSearches through git repositories for high entropy strings and secrets, digging deep into commit history
Stars: ✭ 6,225 (-40.83%)
privapiDetect Sensitive REST API communication using Deep Neural Networks
Stars: ✭ 42 (-99.6%)
DongTai-agent-javaJava Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
Stars: ✭ 592 (-94.37%)
lunasecLunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Stars: ✭ 1,261 (-88.01%)
ochrona-cliA command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
Stars: ✭ 46 (-99.56%)
dep-scanFully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (-96.71%)
awesome-policy-as-codeA curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
Stars: ✭ 121 (-98.85%)
ggshield-actionGitGuardian Shield GitHub Action - Find exposed credentials in your commits
Stars: ✭ 304 (-97.11%)
natsA program to hide file into executable binary.
Stars: ✭ 16 (-99.85%)
ggshieldFind and fix 360+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.
Stars: ✭ 1,272 (-87.91%)
tss-rbA Ruby implementation of Threshold Secret Sharing (Shamir) as defined in IETF Internet-Draft draft-mcgrew-tss-03.txt
Stars: ✭ 22 (-99.79%)
dohq-ai-best-practicesВнедрение и эксплуатация PT Application Inspector. Подробнее: https://habr.com/ru/company/pt/blog/557142/
Stars: ✭ 22 (-99.79%)
secretsSimple Secret Sharing Service for social and decentralised management of passwords
Stars: ✭ 30 (-99.71%)
FugaciousOSSSM (awesome). Open source short-term secure messaging
Stars: ✭ 100 (-99.05%)
mapi-action🤖 Run a Mayhem for API scan in GitHub Actions
Stars: ✭ 16 (-99.85%)
Secretsend a message through a safe, private, and encrypted link that automatically expires to ensure your stuff does not remain online forever.
Stars: ✭ 83 (-99.21%)
havengrc☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬
Stars: ✭ 83 (-99.21%)
gnirtsObfuscate string literals in JavaScript code.
Stars: ✭ 65 (-99.38%)
Ksdkubernetes secret decoder
Stars: ✭ 59 (-99.44%)
synatorSynator Kubernetes Secret and ConfigMap synchronizer
Stars: ✭ 108 (-98.97%)
Real Time Public ChatThis program show how to create a public chat using javascript
Stars: ✭ 45 (-99.57%)
shamirs-secret-sharingA simple implementation of Shamir's Secret Sharing configured to use a finite field in GF(2^8) with 128 bit padding
Stars: ✭ 59 (-99.44%)
GufferGuffer tweets based on a daily schedule
Stars: ✭ 12 (-99.89%)
lockupLockup Gem
Stars: ✭ 111 (-98.94%)
KubesecSecure Secret management for Kubernetes (with gpg, Google Cloud KMS and AWS KMS backends)
Stars: ✭ 547 (-94.8%)
Hemmelig.appKeep your sensitive information out of chat logs, emails, and more with encrypted secrets.
Stars: ✭ 183 (-98.26%)
aws-firewall-factoryDeploy, update, and stage your WAFs while managing them centrally via FMS.
Stars: ✭ 72 (-99.32%)
prancer-compliance-testThis repository includes cloud security policies for IaC and live resources.
Stars: ✭ 32 (-99.7%)
workshop-devsecopsLa intención de la workshop es mostrar y orientar a los equipos de desarrollo, seguridad y devops (entre otros) que quieran comenzar en DevSecOps, a segurar sus aplicaciones o bien a conocer un poco más acerca del desarrollo seguro, para esto, estaremos otorgando algunos tips e información que fuimos aprendiendo para armar un Pipeline DevSecOps …
Stars: ✭ 14 (-99.87%)
perimeterator'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
Stars: ✭ 59 (-99.44%)