578 Open source projects that are alternatives of or similar to Nebulousad

Explore Indicators of Compromise Automatically

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

YARA malware query accelerator (web frontend)

The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.

A repository of tools for pentesting of restricted and isolated environments.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

kube-scan: Octarine k8s cluster risk assessment tool

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Linux命令转发记录

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

A Go implementation of dirsearch.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Patch-level verification for Bundler

Source Code Security Audit (源代码安全审计)

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

⚡️ Docker official image for Wallarm Node. API security platform agent.

This is the official main repository for the Assimilation project

Web-based Source Code Vulnerability Scanner

grep rough audit - source code auditing tool

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

The dum^H^H^Hsimplest encryption tool in the world.

Ethereum recon and exploitation tool.

snopf USB password token

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

Resources to help you keep secrets (API keys, database credentials, certificates, ...) out of source code and remediate the issue in case of a leaked API key. Made available by GitGuardian.

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

outis is a custom Remote Administration Tool (RAT) or something like that. It was build to support various transport methods (like DNS) and platforms (like Powershell).

A CLI tool for automating the importing, securing and usage of NordVPN (and in the future, more) OpenVPN servers through NetworkManager.

Kubernetes Common Configuration Scoring System

End-To-End File & Message Encryption For Discord

A collection of Ansible Playbooks that configure Kali to use Fish & install a number of tools

Username enumeration and password spraying tool aimed at Microsoft O365.

🚿 Sanitising your documents, one threat at a time. — Content Disarm & Reconstruction Software

Work in progress firewall for Linux syscalls, written in Rust

🚀 Fast Port Scanner 🚀

This is the full file system fuzzing framework that I presented at the Hack in the Box 2020 Lockdown Edition conference in April.

Automated Security Testing For REST API's

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

Web Application recon automation

EmbedOS - Embedded security testing virtual machine

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

Hunt down the secrets from the WebArchives for Fun and Profit

A JWT (JSON Web Token) Encoder & Decoder

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

🎯 Server Side Template Injection Payloads

Exploit management framework

Open source all-in-one CLI tool to semi-automate pentesting.

GDA is a new fast and powerful decompiler in C++(working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, dat…

A tool to test security of json web token

protocol fuzzing toolkit

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.