meta-secure-coreOpenEmbedded layer for the use cases on secure boot, integrity and encryption
Stars: ✭ 80 (+344.44%)
security-reviewsA community collection of security reviews of open source software components.
Stars: ✭ 67 (+272.22%)
confidential-computing-zooConfidential Computing Zoo provides confidential computing solutions based on Intel SGX, TDX, HEXL, etc. technologies.
Stars: ✭ 177 (+883.33%)
gods-unchained-apiPublic developer API documentation for Gods Unchained.
Stars: ✭ 49 (+172.22%)
vsauditVOIP Security Audit Framework
Stars: ✭ 104 (+477.78%)
BlowholeDocker auditing and enumeration script.
Stars: ✭ 21 (+16.67%)
clair-cicdMaking CoreOS' Clair easily work in CI/CD pipelines
Stars: ✭ 27 (+50%)
ad-privileged-auditProvides various Windows Server Active Directory (AD) security-focused reports.
Stars: ✭ 42 (+133.33%)
JxnetJxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).
Stars: ✭ 26 (+44.44%)
burp-aem-scannerBurp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common misconfigurations and security holes.
Stars: ✭ 60 (+233.33%)
codecatCodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules. Beta version.
Stars: ✭ 265 (+1372.22%)
MailRipV3SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Stars: ✭ 28 (+55.56%)
Industrial-Security-Auditing-FrameworkISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-auditing-framework.
Stars: ✭ 43 (+138.89%)
kcare-ucheckerA simple tool to detect outdated shared libraries
Stars: ✭ 174 (+866.67%)
SharePoint-SecurityA Github Repository Created to compliment a BSides Canberra 2018 talk on SharePoint Security.
Stars: ✭ 42 (+133.33%)
tmux-conf📝 TMUX Configuration for nerds with tpm
Stars: ✭ 31 (+72.22%)
cnitchContainer Snitch checks running processes under the Docker Engine and alerts if any are found to be running as root
Stars: ✭ 68 (+277.78%)
pip-auditAudits Python environments and dependency trees for known vulnerabilities
Stars: ✭ 735 (+3983.33%)
humbleA humble, and fast, security-oriented HTTP headers analyzer
Stars: ✭ 17 (-5.56%)
LogESPOpen Source SIEM (Security Information and Event Management system).
Stars: ✭ 162 (+800%)
ehidsA Linux Host-based Intrusion Detection System based on eBPF.
Stars: ✭ 210 (+1066.67%)
auraPython source code auditing and static analysis on a large scale
Stars: ✭ 101 (+461.11%)
dep-scanFully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (+1822.22%)
CrumbleMenu driven wordlist generator in C++
Stars: ✭ 19 (+5.56%)
RFMapRFMap - Radio Frequency Mapper
Stars: ✭ 23 (+27.78%)
SpydanA web spider for shodan.io without using the Developer API.
Stars: ✭ 30 (+66.67%)
MantOSLIFARS Networking Security GNU/Linux distro
Stars: ✭ 24 (+33.33%)
PentestingMisc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (+33.33%)
clair-singularityScan Singularity container images using a Clair server
Stars: ✭ 14 (-22.22%)
docker-wallarm-node⚡️ Docker official image for Wallarm Node. API security platform agent.
Stars: ✭ 18 (+0%)
opencryptokiPKCS#11 library and tools for Linux. Includes tokens supporting TPM and IBM crypto hardware as well as a software token.
Stars: ✭ 100 (+455.56%)
cpan-auditCheck CPAN modules for known security vulnerabilities
Stars: ✭ 27 (+50%)
rubysecRubySec Field Guide
Stars: ✭ 41 (+127.78%)
phan-taint-check-pluginGithub mirror of "mediawiki/tools/phan/SecurityCheckPlugin" - our actual code is hosted with Gerrit (please see https://www.mediawiki.org/wiki/Developer_access for contributing)
Stars: ✭ 21 (+16.67%)
nerfballWant to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳
Stars: ✭ 19 (+5.56%)
CIS-Ubuntu-20.04-AnsibleAnsible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
Stars: ✭ 150 (+733.33%)
cliThe universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.
Stars: ✭ 811 (+4405.56%)
awesome-rails-securityA curated list of security resources for a Ruby on Rails application
Stars: ✭ 36 (+100%)
ITP-IMA-Code-of-ConductThe ITP/IMA Code of Conduct is an evolving work-in-progress document that establishes and communicates the commitment of the ITP/IMA community to uphold a key set of standards and obligations that aim to make ITP/IMA an inclusive and welcoming environment.
Stars: ✭ 26 (+44.44%)
AttestationSamplesA small subset of the submitted sample data from https://github.com/GrapheneOS/Auditor. It has a sample attestation certificate chain per device model (ro.product.model) along with a subset of the system properties from the sample as supplementary information.
Stars: ✭ 25 (+38.89%)
AttestationServerServer code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.
Stars: ✭ 64 (+255.56%)
tpm2-abrmdTPM2 Access Broker & Resource Management Daemon implementing the TCG spec.
Stars: ✭ 97 (+438.89%)
tell-me-your-secretsFind secrets on any machine from over 120 Different Signatures.
Stars: ✭ 31 (+72.22%)
devicecheck-appattestServer-side library to validate the authenticity of Apple App Attest artifacts, written in Kotlin.
Stars: ✭ 45 (+150%)
magento-corediffQuickly find modifications in Magento 1 or Magento 2 core code
Stars: ✭ 23 (+27.78%)
default-http-login-hunterLogin hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.
Stars: ✭ 285 (+1483.33%)
Detect-CVE-2017-15361-TPMDetects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber
Stars: ✭ 34 (+88.89%)
assimilation-officialThis is the official main repository for the Assimilation project
Stars: ✭ 47 (+161.11%)
prowlerProwler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
Stars: ✭ 8,046 (+44600%)
RockYou2021.txtRockYou2021.txt is a MASSIVE WORDLIST compiled of various other wordlists. RockYou2021.txt DOES NOT CONTAIN USER:PASS logins!
Stars: ✭ 288 (+1500%)
mkm-sdkPython SDK for Magickartenmarkt API
Stars: ✭ 33 (+83.33%)
dependency-check-py🔐 Shim to easily install OWASP dependency-check-cli into Python projects
Stars: ✭ 44 (+144.44%)
pciPacket communication investigator
Stars: ✭ 82 (+355.56%)
LogmiraLogmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.
Stars: ✭ 46 (+155.56%)
SecuritySample(Android) Hide encrypted secret API keys in C/C++ code, retrieve and decrypt them via JNI. Google SafetyNet APIs example.
Stars: ✭ 49 (+172.22%)