Kube Scankube-scan: Octarine k8s cluster risk assessment tool
Stars: ✭ 566 (+122.83%)
InsiderStatic Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
Stars: ✭ 216 (-14.96%)
Vulny Code Static AnalysisPython script to detect vulnerabilities inside PHP source code using static analysis, based on regex
Stars: ✭ 207 (-18.5%)
ApplicationinspectorA source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
Stars: ✭ 3,873 (+1424.8%)
SalusSecurity scanner coordinator
Stars: ✭ 441 (+73.62%)
LynisLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Stars: ✭ 9,137 (+3497.24%)
Jsprimea javascript static security analysis tool
Stars: ✭ 556 (+118.9%)
Golang TlsSimple Golang HTTPS/TLS Examples
Stars: ✭ 857 (+237.4%)
VulsAgent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Stars: ✭ 8,844 (+3381.89%)
ChronosChronos - A static race detector for the go language
Stars: ✭ 272 (+7.09%)
HuskyciPerforming security tests inside your CI
Stars: ✭ 398 (+56.69%)
Go RuleguardDefine and run pattern-based custom linting rules.
Stars: ✭ 402 (+58.27%)
Misp MaltegoSet of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
Stars: ✭ 112 (-55.91%)
Angr UtilsHandy utilities for the angr binary analysis framework, most notably CFG visualization
Stars: ✭ 169 (-33.46%)
WssatWEB SERVICE SECURITY ASSESSMENT TOOL
Stars: ✭ 360 (+41.73%)
HorusecHorusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
Stars: ✭ 311 (+22.44%)
Security ToolsCollection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (+100.39%)
Security Code ScanVulnerability Patterns Detector for C# and VB.NET
Stars: ✭ 550 (+116.54%)
MalScanA Simple PE File Heuristics Scanners
Stars: ✭ 41 (-83.86%)
Sonar Java☕️ SonarSource Static Analyzer for Java Code Quality and Security
Stars: ✭ 745 (+193.31%)
BineeBinee: binary emulation environment
Stars: ✭ 408 (+60.63%)
PhanPhan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Stars: ✭ 5,194 (+1944.88%)
CodecheckerCodeChecker is an analyzer tooling, defect database and viewer extension for the Clang Static Analyzer and Clang Tidy
Stars: ✭ 1,209 (+375.98%)
ZpaA parser and source code analyzer for PL/SQL and Oracle SQL.
Stars: ✭ 124 (-51.18%)
Njsscannjsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Stars: ✭ 128 (-49.61%)
Kube ScoreKubernetes object analysis with recommendations for improved reliability and security
Stars: ✭ 1,128 (+344.09%)
Cytoscape.jsGraph theory (network) library for visualisation and analysis
Stars: ✭ 8,107 (+3091.73%)
ReplicaGhidra Analysis Enhancer 🐉
Stars: ✭ 194 (-23.62%)
Security ListPenetrum LLC opensource security tool list.
Stars: ✭ 619 (+143.7%)
ExakatThe Exakat Engine : smart static analysis for PHP
Stars: ✭ 346 (+36.22%)
Dexcalibur[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
Stars: ✭ 512 (+101.57%)
Dg[LLVM Static Slicer] Various program analyses, construction of dependence graphs and program slicing of LLVM bitcode.
Stars: ✭ 242 (-4.72%)
GosecGolang security checker
Stars: ✭ 5,694 (+2141.73%)
sbt-findbugsFindBugs static analysis plugin for sbt.
Stars: ✭ 47 (-81.5%)
SDASDA is a rich cross-platform tool for reverse engineering that focused firstly on analysis of computer games. I'm trying to create a mix of the Ghidra, Cheat Engine and x64dbg. My tool will combine static and dynamic analysis of programs. Now SDA is being developed.
Stars: ✭ 98 (-61.42%)
swap-detectorA library for detecting swapped arguments in function calls, and a Clang Static Analyzer plugin used to demonstrate the library.
Stars: ✭ 19 (-92.52%)
PhpmndPHP Magic Number Detector
Stars: ✭ 431 (+69.69%)
BrakemanA static analysis security vulnerability scanner for Ruby on Rails applications
Stars: ✭ 6,281 (+2372.83%)
Static Analysis⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more.
Stars: ✭ 9,310 (+3565.35%)
AdhritAndroid Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.
Stars: ✭ 399 (+57.09%)
Analyzer🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: ✭ 108 (-57.48%)
Nodejsscannodejsscan is a static security code scanner for Node.js applications.
Stars: ✭ 1,874 (+637.8%)
SquealerTelling tales on you for leaking secrets!
Stars: ✭ 97 (-61.81%)
AmdhAndroid Mobile Device Hardening
Stars: ✭ 95 (-62.6%)
go-mndMagic number detector for Go.
Stars: ✭ 153 (-39.76%)
constybleCSS complexity linter
Stars: ✭ 92 (-63.78%)
humbleA humble, and fast, security-oriented HTTP headers analyzer
Stars: ✭ 17 (-93.31%)
ScalpelScalpel: The Python Static Analysis Framework
Stars: ✭ 176 (-30.71%)
Cpp2ILWork-in-progress tool to reverse unity's IL2CPP toolchain.
Stars: ✭ 689 (+171.26%)
SqlServer.RulesSQL Server static code analysis rules for SSDT database projects
Stars: ✭ 20 (-92.13%)
static file analysisAnalysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Stars: ✭ 34 (-86.61%)
CobraSource Code Security Audit (源代码安全审计)
Stars: ✭ 2,802 (+1003.15%)
DetektStatic code analysis for Kotlin
Stars: ✭ 4,169 (+1541.34%)