515 Open source projects that are alternatives of or similar to Linux Secureboot Kit

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Hardening Ubuntu. Systemd edition.

Trigram database written in C++, suited for malware indexing

Performing security tests inside your CI

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

NebulousAD automated credential auditing tool.

HackerOne "in scope" domains

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Canary: Input Detection and Response

Simple Golang HTTPS/TLS Examples

🕷️ XSS Listener is a penetration tool for easy to steal data with various XSS.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Ansible CentOS 7 - CIS Benchmark Hardening Script

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Explore Indicators of Compromise Automatically

Kubernetes RBAC static Analysis & visualisation tool

YARA malware query accelerator (web frontend)

Web Scan Lazy Tools - Python Package

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Web application vulnerability scanner

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

Ansible playbook roles for security

Ansible role for Ubuntu 2004 CIS Baseline

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Scripts to gather system configuration information for offline/remote auditing

Golang security checker

Infection Monkey - An automated pentest tool

All-in-one tool for managing vulnerability reports from AppSec pipelines

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Simplifying Seccomp enforcement in containerized or non-containerized apps

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

安全编排与自动化响应平台

Ansible role to apply a security baseline. Systemd edition.

Open-source tool to enforce privacy & security best-practices on Windows and macOS, because privacy is sexy 🍑🍆

🔎 shodansploit > v1.3.0

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

Plugin to block compilation when unapproved dependencies are used or code styling does not comply.

secureCodeBox (SCB) - continuous secure delivery out of the box

This is the official main repository for the Assimilation project

Dashboard to collect, analyze, and respond to reported phishing emails.

a tool to analyze filesystem images for security

Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

A collection of awesome security hardening guides, tools and other resources

Openwrt 18.06.5 featured with the Exein's security framework

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Wazuh - Chef cookbooks

Advanced Netstat Using Python For Windows

We propose a user-friendly add-on that allows you to check if your encrypted web traffic (SSL/TLS) towards secured Internet servers (HTTPS) is not intercepted (being listened to).

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

Seamlessly encrypt/decrypt/edit your rails Dotenv files with the help of the Sekrets gem

A Machine Learning approach for classifying a file as Malicious or Legitimate

A default credential scanner.

The Cyber Security Platform MeliCERTes is part of the European Strategy for Cyber Security. MeliCERTes is a network for establishing confidence and trust among the national Computer Security Incident Response Teams (CSIRTs) of the Member States and for promoting swift and effective operational cooperation.