269 Open source projects that are alternatives of or similar to Skf Flask

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Simple Golang HTTPS/TLS Examples

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Provides various Windows Server Active Directory (AD) security-focused reports.

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

🔑 Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)

Want to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳

Scripts to gather system configuration information for offline/remote auditing

This is the official main repository for the Assimilation project

A curated list of security resources for a Ruby on Rails application

SSL and TLS protocol test suite and fuzzer

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

The Grass Computing Platform

Web-based Source Code Vulnerability Scanner

Scripts built from our Guide to User Data Security

Security advisory database for Rust crates published through crates.io

Cybersecurity Evaluation Tool

Web Scan Lazy Tools - Python Package

Quickly secure UNIX/Linux systems

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Ansible role for Red Hat 7 CIS Baseline

🕷️ XSS Listener is a penetration tool for easy to steal data with various XSS.

The Hitchhiker’s Guide to Online Anonymity

Dradis Framework: Colllaboration and reporting for IT Security teams

Technical details that a programmer of a web application should consider before making the site public.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Build Content-Security-Policy headers from a JSON file (or build them programmatically)

Ansible playbook roles for security

一键提取安卓应用中可能存在的敏感信息。

ATT&CK实操

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

Wazuh - Ruleset

a tool to analyze filesystem images for security

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

An NFC research toolkit application for Android

Look-Ahead Java Deserialization Library

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Web Application Security Scanner Framework

🎖safely* install packages with npm or yarn by auditing them as part of your install process

PHP Security Check List [ EN ] 🌋 ☣️

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Secure Content Management for the Modern Web - "The sky is only the beginning"

Secure-by-default HTTP servers in Go.

Kubernetes RBAC static Analysis & visualisation tool

CIS Baseline Ansible Role for Ubuntu 18

Web application vulnerability scanner

Certified Smart Contract Audits (Ethereum, Hyperledger, xDAI, Huobi ECO Chain, Binance Smart Chain, Fantom, EOS, Tezos) by Chainsulting

Helps you continuously monitor and fix common security vulnerabilities in your Django application.

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

Tracking CVEs for the linux Kernel

The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testing. The tool is intended to speed up the process of Cloud review in case the security researcher compromised AWS Account Credentials.

A toolbox to enforce firewall rules across multiple GCP projects.