lunasecLunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Stars: ✭ 1,261 (+68.13%)
ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+508.13%)
OffensiveCloudDistributionLeverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.
Stars: ✭ 86 (-88.53%)
CelerystalkAn asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.
Stars: ✭ 333 (-55.6%)
PowerexploitPost-Exploitation 😎 module for Penetration Tester and Hackers.
Stars: ✭ 26 (-96.53%)
CfripperLibrary and CLI tool for analysing CloudFormation templates and check them for security compliance.
Stars: ✭ 265 (-64.67%)
docusAndroid application for scanning and managing documents.
Stars: ✭ 39 (-94.8%)
OctopusOctopus - Network Scan/Infos & Web Scan
Stars: ✭ 25 (-96.67%)
Audit-Test-AutomationThe Audit Test Automation Package gives you the ability to get an overview about the compliance status of several systems. You can easily create HTML-reports and have a transparent overview over compliance and non-compliance of explicit setttings and configurations in comparison to industry standards and hardening guides.
Stars: ✭ 37 (-95.07%)
Cloud CustodianRules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
Stars: ✭ 3,926 (+423.47%)
garrisonSecurity, Compliance and Informational Dashboard System
Stars: ✭ 24 (-96.8%)
OrtA suite of tools to assist with reviewing Open Source Software dependencies.
Stars: ✭ 446 (-40.53%)
vulcanA web application to streamline the development of STIGs from SRGs
Stars: ✭ 30 (-96%)
RudderContinuous Auditing & Configuration
Stars: ✭ 314 (-58.13%)
speedle-plusSpeedle+ is an open source project for access management. It is based on Speedle open source project and maintained by previous Speedle maintainers.
Stars: ✭ 45 (-94%)
TernTern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBoM that Tern generates will give you a layer-by-layer view of what's inside your container in a variety of formats including human-readable, JSON, HTML, SPDX and more.
Stars: ✭ 505 (-32.67%)
terraform-aws-configThis module configures AWS Config, a service that enables you to assess, audit, and evaluate the configurations of your AWS resources.
Stars: ✭ 24 (-96.8%)
OpendsrA common framework enabling companies to work together to protect consumers' privacy and data rights.
Stars: ✭ 295 (-60.67%)
OpenLibreNFCAn app to modify and read memory in the Libre blood glucose monitor.
Stars: ✭ 45 (-94%)
KonanKonan - Advanced Web Application Dir Scanner
Stars: ✭ 412 (-45.07%)
compliance-trestleAn opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
Stars: ✭ 53 (-92.93%)
interceptINTERCEPT / Policy as Code Static Analysis Auditing / SAST
Stars: ✭ 54 (-92.8%)
cluster-image-scannerDiscover vulnerabilities and container image misconfiguration in production environments.
Stars: ✭ 43 (-94.27%)
kodexA privacy and security engineering toolkit: Discover, understand, pseudonymize, anonymize, encrypt and securely share sensitive and personal data: Privacy and security as code.
Stars: ✭ 70 (-90.67%)
ekolabsEKOLABS esta dedicada para investigadores independientes y para la comunidad del Software Libre. Vamos a proveer de stands completos con monitor, alimentacion de energia y acceso a internet por cable, y vos vas a traer tu maquina para mostrar tu trabajo y responder preguntas de los participantes de Ekoparty Security Conference
Stars: ✭ 47 (-93.73%)
wifiexplorer-sensor[DEPRECATED] Enables remote scanning in WiFi Explorer Pro
Stars: ✭ 37 (-95.07%)
Ossec HidsOSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
Stars: ✭ 3,580 (+377.33%)
OpaAn open source, general-purpose policy engine.
Stars: ✭ 5,939 (+691.87%)
NatlasScaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.
Stars: ✭ 333 (-55.6%)
secureCodeBox-v2This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.
Stars: ✭ 23 (-96.93%)
FossologyFOSSology is an open source license compliance software system and toolkit. As a toolkit you can run license, copyright and export control scans from the command line. As a system, a database and web ui are provided to give you a compliance workflow. License, copyright and export scanners are tools used in the workflow.
Stars: ✭ 440 (-41.33%)
libredefenderImagine the information security compliance guideline says you need an antivirus but you run Arch Linux
Stars: ✭ 76 (-89.87%)
DtDNS tool - display information about your domain
Stars: ✭ 313 (-58.27%)
FOSSologyUIRepository to hold the new UI framework for FOSSology built with React
Stars: ✭ 35 (-95.33%)
ComplyCompliance automation framework, focused on SOC2
Stars: ✭ 596 (-20.53%)
iSecureOSAn iOS Security assessment app for jailbroken iOS Devices.
Stars: ✭ 111 (-85.2%)
coreAn advanced and highly optimized Java library to build frameworks: it's useful for scanning class paths, generating classes at runtime, facilitating the use of reflection, scanning the filesystem, executing stringified source code and much more...
Stars: ✭ 100 (-86.67%)
PhoneinfogaPhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.
Stars: ✭ 5,927 (+690.27%)
urlscan👀 Analyze Websites and Resources They Request
Stars: ✭ 21 (-97.2%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+352.13%)
iOScanXiOScanX (iOS Application Scanner for OS X) is a Cocoa application for semi-automated iOS app analysis and evaluation
Stars: ✭ 33 (-95.6%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (-34.13%)
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (-88.53%)
ZmapZMap is a fast single packet network scanner designed for Internet-wide network surveys.
Stars: ✭ 4,083 (+444.4%)
knxmapKNXnet/IP scanning and auditing tool for KNX home automation installations.
Stars: ✭ 97 (-87.07%)
fidesopsPrivacy as Code for DSAR Orchestration: Privacy Request automation to fulfill GDPR, CCPA, and LGPD data subject requests.
Stars: ✭ 32 (-95.73%)
ScantronA distributed nmap / masscan scanning framework complete with an API client for automation workflows
Stars: ✭ 542 (-27.73%)
SweepFast and powerful Swift string scanning made simple
Stars: ✭ 485 (-35.33%)
Rustscan🤖 The Modern Port Scanner 🤖
Stars: ✭ 5,218 (+595.73%)