Topic: security-audit Goto Github

👇 Here are 865 public repositories matching this topic...

aquasecurity / cloudsploit
security-audit,Cloud Security Posture Management (CSPM)
Organization: aquasecurity
Home Page: https://cloud.aquasec.com/signup
aws security security-audit cloud azure cspm aqua gcp oci oracle

arachni / arachni
security-audit,Web Application Security Scanner Framework
Organization: arachni
Home Page: http://www.arachni-scanner.com
arachni dom ruby audit detection security-audit analysis modular javascript scanners web-application vulnerability-detection crawler scanner hack hacking penetration-testing xss sql-injection

bearer / bearer
security-audit,Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Organization: bearer
Home Page: https://docs.bearer.com
appsec compliance devsecops devsecops-tools security security-tools dataflow gdpr privacy sast static-code-analysis vulnerability security-audit security-scanner vulnerabilities code-quality static-analysis security-automation owasp

cddmp / enum4linux-ng
security-audit,A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
User: cddmp
ctf-tools enum4linux enumeration hackthebox htb pentest pentest-tools security security-audit

charles2gan / gda-android-reversing-tool
security-audit,the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.
User: charles2gan
Home Page: https://twitter.com/charles_gan1
decompiler vulnerability-scanners malware-analysis security-audit mobile-security privacy-protection

cisagov / cset
security-audit,Cybersecurity Evaluation Tool
Organization: cisagov
cset security-audit

cisofy / lynis
security-audit,Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Organization: cisofy
Home Page: https://cisofy.com/lynis/
shell linux pci-dss compliance security-audit security-hardening security-scanner security-vulnerability hipaa unix

codingo / nosqlmap
security-audit,Automated NoSQL database enumeration and web application exploitation tool.
User: codingo
nosql nosql-databases penetration-testing scanner security-audit security-tools security-toolset offensive-security enumeration databases mongodb couchdb web-application-security bugbounty redis mongodb-database sql-injection hacking hacking-tool hacktoberfest

codingo / reconnoitre
security-audit,A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
User: codingo
oscp penetration-testing scanner security security-audit security-tools security-scanner offensive-security nmap enumeration scanning kali-linux service-enumeration services-discovered discover-services range snmp hacking hacking-tool virtual-hosts

codingo / vhostscan
security-audit,A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
User: codingo
security-audit penetration-testing penetration-test virtual-hosts web-application-security discovery-service hacking hacking-tool virtual-host vhost

denji / golang-tls
security-audit,Simple Golang HTTPS/TLS Examples
User: denji
Home Page: https://git.io/vSvsI
http2 https-server https httpclient golang go openssl libressl awesome tools security-hardening security-tools security-audit security-scanner secure security

dnakov / little-rat
security-audit,🐀 Small chrome extension to monitor (and optionally block) other extensions' network calls
User: dnakov
chrome-extension javascript security-audit browser chromium

doyensec / inql
security-audit,InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
Organization: doyensec
Home Page: https://doyensec.com/
graphql security-scanner graphql-security api-documentation-tool security-tools security-audit burp-extensions burpsuite bugbounty bugbounty-tool penetration-testing

eliotsykes / rails-security-checklist
security-audit,:key: Community-driven Rails Security Checklist (see our GitHub Issues for the newest checks that aren't yet in the README)
User: eliotsykes
checklist rails-security rails rails-security-checklist ruby-on-rails security-audit security-hardening security

evilsocket / bettercap
security-audit,DEPRECATED, bettercap developement moved here: https://github.com/bettercap/bettercap
User: evilsocket
Home Page: http://www.bettercap.org/
bettercap mitm man-in-the-middle spoofing security security-audit tls proxy ettercap sslstrip

feeicn / cobra
security-audit,Source Code Security Audit (源代码安全审计)
User: feeicn
Home Page: http://cobra.feei.cn
cobra code-audit sourcecode-analysis security-tools security-audit security-scanner

felixgr / secure-ios-app-dev
security-audit,Collection of the most common vulnerabilities found in iOS applications
User: felixgr
security security-audit vulnerability-assessment ios

find-sec-bugs / find-sec-bugs
security-audit,The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
Organization: find-sec-bugs
Home Page: https://find-sec-bugs.github.io/
findbugs java security-audit owasp taint-analysis code-analysis security bytecode cwe static-analysis

future-architect / vuls
security-audit,Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Organization: future-architect
Home Page: https://vuls.io/
vuls vulnerability-scanners golang go linux freebsd vulnerability-detection security security-tools cybersecurity

gojue / ecapture
security-audit,Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.
Organization: gojue
Home Page: https://ecapture.cc
android android-https-capture ebpf ebpf-go ebpf-tc ebpf-uprobe golang https linux network-capture security-audit ssl ssldump tcpdump tls

goodwithtech / dockle
security-audit,Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
Organization: goodwithtech
Home Page: https://containers.goodwith.tech/
docker containers kubernetes security security-tools security-audit linter go golang vulnerability

google / osv-scanner
security-audit,Vulnerability scanner written in Go which uses the data provided by https://osv.dev
Organization: google
Home Page: https://google.github.io/osv-scanner/
scanner security-audit security-tools vulnerability-scanner

grayddq / gscan
security-audit,本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。
User: grayddq
security security-scanning security-tools vulnerability-scanning auditing security-audit

infobyte / faraday
security-audit,Open Source Vulnerability Management Platform
Organization: infobyte
Home Page: https://www.faradaysec.com
devops penetration-testing vulnerability vulnerability-scanners security security-audit pentesting continuous-scanning infosec vulnerability-management collaboration burpsuite nessus nmap devsecops security-automation orchestration cve appsec cybersecurity

jeremylong / dependencycheck
security-audit,OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
User: jeremylong
Home Page: https://owasp.org/www-project-dependency-check/
security-audit build-tool maven-plugin jenkins-plugin gradle-plugin vulnerability-detection security ant-task software-composition-analysis

koutto / jok3r
security-audit,Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework
User: koutto
Home Page: https://www.jok3r-framework.com
toolbox pentest automation network web-hacking toolbox-management hacking-tool hacking security security-audit

kpcyrd / sn0int
security-audit,Semi-automatic OSINT framework and package manager
User: kpcyrd
Home Page: https://sn0int.readthedocs.io/
osint intelligence osint-framework certificate-transparency rust security security-audit security-scanner investigation reconnaissance

m0nad / diamorphine
security-audit,LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x/6.x (x86/x86_64 and ARM64)
User: m0nad
rootkit lkm-rootkit c kernel kernel-module security-tools linux linux-kernel hacking hacking-tool

m4n3dw0lf / pythem
security-audit,pentest framework
User: m4n3dw0lf
pentest sniffer brute-force man-in-the-middle scanner xss proxy spoof denial-of-service exploit

michaelgrafnetter / dsinternals
security-audit, Directory Services Internals (DSInternals) PowerShell Module and Framework
User: michaelgrafnetter
Home Page: https://www.dsinternals.com
security-audit penetration-testing active-directory nuget-packages ntds powershell dpapi sam lsa passwords

nfcgate / nfcgate
security-audit,An NFC research toolkit application for Android
Organization: nfcgate
nfc android-nfc security security-audit android relay replay cloning hce hacktoberfest

owasp-dep-scan / dep-scan
security-audit,OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
Organization: owasp-dep-scan
Home Page: https://owasp.org/www-project-dep-scan/
vulnerability-scanners cve dependency-analysis risk-audit containers sbom sca dependency-audit compliance cyclonedx

owasp / owasp-masvs
security-audit,The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.
Organization: owasp
Home Page: https://mas.owasp.org/
masvs verification mobile security audit penetration-tests standard gitbook penetration-testing owasp

presidentbeef / brakeman
security-audit,A static analysis security vulnerability scanner for Ruby on Rails applications
User: presidentbeef
Home Page: https://brakemanscanner.org/
brakeman rails ruby security security-audit security-tools security-vulnerability static-analysis vulnerabilities

prowler-cloud / prowler
security-audit,Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
Organization: prowler-cloud
Home Page: https://prowler.com
security security-tools security-audit security-hardening hardening aws cis-benchmark compliance gdpr forensics cloud well-architected devsecops azure iam python gcp multi-cloud

pwndoc / pwndoc
security-audit,Pentest Report Generator
Organization: pwndoc
Home Page: https://pwndoc.github.io/pwndoc
pentest reporting pentesting-tool reporting-tool security security-tool collaboration audit security-audit penetration-testing

rastating / wordpress-exploit-framework
security-audit,A Ruby framework designed to aid in the penetration testing of WordPress systems.
User: rastating
Home Page: https://rastating.github.io/wordpress-exploit-framework
wordpress-exploit-framework security security-audit exploits wordpress

rubysec / bundler-audit
security-audit,Patch-level verification for Bundler
Organization: rubysec
bundler-audit ruby-advisory-db ruby dependency-checker patch-management security security-tools security-audit

scipag / vulscan
security-audit,Advanced vulnerability scanning with Nmap NSE
Organization: scipag
Home Page: https://www.computec.ch/projekte/vulscan/
vulnerability vulnerability-scanners vulnerability-detection vulnerability-identification vulnerability-assessment security security-audit security-scanner penetration-testing nmap

securityftw / cs-suite
security-audit,Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
Organization: securityftw
aws-security security-audit cloud-security gcp-audit-report gcp aws-audit security azure-security azure azure-audit security-tools

ssh-mitm / ssh-mitm
security-audit,SSH-MITM - ssh audits made simple
Organization: ssh-mitm
Home Page: https://docs.ssh-mitm.at
ssh ssh-server ssh-client mitmproxy mitm-server mitm-attacks security-audit security-tools mitm proxy

syslifters / sysreptor
security-audit,Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
Organization: syslifters
Home Page: https://docs.sysreptor.com
penetration-testing pentest pentesting-tool reporting reporting-tool security-assessment security-audit infosectools offsec oscp

techgaun / github-dorks
security-audit,Find leaked secrets via github search
User: techgaun
security-audit github-dork hacktoberfest dork dorker hacking

techjacker / repo-security-scanner
security-audit,CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys
User: techjacker
golang security security-audit

vchinnipilli / kubestriker
security-audit,A Blazing fast Security Auditing tool for Kubernetes
Organization: vchinnipilli
Home Page: https://github.com/vchinnipilli/kubestriker
kubernetes docker containers aws eks aks azure gke security security-tools security-audit automation informationsecurity infosec kubernetes-security docker-security container-security devops

w5teams / w5
security-audit,Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效
Organization: w5teams
Home Page: https://w5.io
automation devops hack hacker hacking python-script python3 security security-audit security-automation security-tools shuffle soar tools w5 w5soar walkoff

wazuh / wazuh
security-audit,Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Organization: wazuh
Home Page: https://wazuh.com/
security compliance log-analysis vulnerability-detection cybersecurity file-integrity-monitoring infosec malware-detection cloud-security container-security

we5ter / scanners-box
security-audit,A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
User: we5ter
pentesting-tools hacker-tools vulnerability-scanners information-security redteam-tools penetration-testing devsecops security-automation smart-contracts privacy-compliance apk-analysis binary-analysis exploitation-framework malware-analysis security-audit code-analyzer static-analysis wifi-hacking wifi-security

wireghoul / graudit
security-audit,grep rough audit - source code auditing tool
User: wireghoul
Home Page: http://www.justanotherhacker.com
security shell vulnerability-detection source-code security-audit security-tools

ysrc / xunfeng
security-audit,巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。
Organization: ysrc
security pentesting infosec exploits security-audit vulnerability-detection scanner vulnerability-assessment vulnerability-scanners