SECTERIA

assetcompliancetracker

ACT

dgo

Official Dgraph Go client

dns

DNS library in Go

external-secrets

The External Secrets Kubernetes operator reads information from a third party service like AWS Secrets Manager and automatically injects the values as Kubernetes Secrets.

go-dep-parser

Dependency Parser for Multiple Programming Languages

gokart

A static analysis tool for securing Go code

grype

A vulnerability scanner for container images and filesystems

portscan

Port scanning examples to teach Go concurrency bounding

rita

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

semgrep

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

semgrep-rules

Semgrep rules registry

tfsec

🔒🌍 Security scanner for your Terraform code

tracee

Linux Runtime Security and Forensics using eBPF

vegeta

HTTP load testing tool and library. It's over 9000!

cloudsec-icons

A collection of cloud security icons :cloud::lock:

coredns

CoreDNS is a DNS server that chains plugins

crypto

dgraph

Native GraphQL Database with graph backend

docker-bench

Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark

fully-homomorphic-encryption

Libraries and tools to perform fully homomorphic encryption operations on an encrypted data set.

gnupg

The GNU Privacy Guard. NOTE: Maintainers are not tracking this mirror. Do not make pull requests here, nor comment any commits, submit them usual way to bug tracker (https://www.gnupg.org/documentation/bts.html) or to the mailing list (https://www.gnupg.org/documentation/mailing-lists.html).

go-licenses

Reports on the licenses used by a Go package and its dependencies.

gobwas

Tiny WebSocket library for Go.

licensecheck

The licensecheck package classifies license files and heuristically determines how well they correspond to known open source licenses.

licenseclassifier

A License Classifier

osv

Open source vulnerability DB and triage service.

prowler

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls and many more additional checks that help on GDPR, HIPAA and other security frameworks.

Security-Datasets

Re-play Security Events

traitor

Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins :arrow_up: :skull_and_crossbones:

xdpcap

tcpdump like XDP packet capture