186 Open source projects that are alternatives of or similar to Mix_audit

Linux命令转发记录

Check read, write permissions on S3 buckets in your account

Unit testing framework for test driven security of AWS, GCP, Heroku and more.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

被动式漏洞扫描系统

VOIP Security Audit Framework

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

Set of tools to audit SIP based VoIP Systems

Open-Source Security Architecture | 开源安全架构

🔑 Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)

IotShark - Monitoring and Analyzing IoT Traffic

Web Content Discovery Tool

GDA is a new fast and powerful decompiler in C++(working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, dat…

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

This Repository contains the stuff related to windows Active directory environment exploitation

Security tool to trace URL's jumps across the rel links to obtain the last URL

Find leaked secrets via github search

A Ruby framework designed to aid in the penetration testing of WordPress systems.

A repository of tools for pentesting of restricted and isolated environments.

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

Collection of the most common vulnerabilities found in iOS applications

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Audit Windows Security with best Practice

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

🐞 Primitive Erlang Security Tool

All-in-one tool for managing vulnerability reports from AppSec pipelines

Automatic SQL injection with Charles and sqlmap api

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

A command line security audit tool for Amazon Web Services

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a large application, with an emphasis on identifying development anti-patterns and footguns.

Scripts to gather system configuration information for offline/remote auditing

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads

pentest framework

Cloud Security Posture Management (CSPM)

A Python SDK for Tufin Orchestration Suite

Powerful Visual Subdomain Enumeration at the Click of a Mouse

CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys

This ansible role gets information from an AWS VPC and generate a graphical representation of security groups

Simple Golang HTTPS/TLS Examples

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Semi-automatic OSINT framework and package manager

Send encrypted PGP messages with one click

Directory Services Internals (DSInternals) PowerShell Module and Framework

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

grep rough audit - source code auditing tool

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

A static analysis security vulnerability scanner for Ruby on Rails applications

The Web Exploit Detector is a Node.js application used to detect possible infections, malicious code and suspicious files in web hosting environments

InQL - A Burp Extension for GraphQL Security Testing

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.

A tool for auditing security properties of GCP projects.

Wordpress Vulnerability Scanner

Automated NoSQL database enumeration and web application exploitation tool.

Kubernetes Common Configuration Scoring System

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。