devsecops

There are 147 repositories under devsecops topic.

aquasecurity / trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
security security-tools docker containers vulnerability-scanners vulnerability-detection vulnerability golang go kubernetes hacktoberfest devsecops misconfiguration infrastructure-as-code iac
Language:Go 23769
gitleaks / gitleaks
Protect and discover secrets using Gitleaks 🔑
devsecops git gitleaks go golang hacktoberfest secret security security-tools
Language:Go 17993
Mobile-Security-Framework-MobSF
MobSF / Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
android-security api-testing apk cwe devsecops dynamic-analysis ios-security malware-analysis mastg masvs mobile-security mobsf mstg owasp rest runtime-security static-analysis web-security windows-mobile-security
Language:JavaScript 17498
trufflehog
trufflesecurity / trufflehog
Find, verify, and analyze leaked credentials
credentials devsecops dynamic-analysis hacktoberfest precommit scanning secret secret-management secrets security security-tools trufflehog verification
Language:Go 17323
bytebase
bytebase / bytebase
The GitHub/GitLab for database DevSecOps. World's most advanced database DevSecOps solution for Developer, Security, DBA and Platform Engineering teams.
cicd data-masking data-security dbeaver devops devsecops flyway gitops liquibase mysql navicat oracle postgresql schema-migrations security snowflake sql sql-client sqlserver tidb
Language:Go 11482
prowler
prowler-cloud / prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
aws azure cis-benchmark cloud compliance devsecops forensics gcp gdpr hardening iam multi-cloud python security security-audit security-hardening security-tools well-architected
Language:Python 10864
gravitl / netmaker
Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.
cloud devsecops k8s kubernetes mesh mesh-network network networking overlay-network security self-hosted virtual-network virtual-networking vpn vpn-server wg-quick wireguard wireguard-ui wireguard-vpn zero-trust
Language:Go 9542
Scanners-Box
We5ter / Scanners-Box
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
apk-analysis binary-analysis code-analyzer devsecops exploitation-framework hacker-tools information-security malware-analysis penetration-testing pentesting-tools privacy-compliance redteam-tools security-audit security-automation smart-contracts static-analysis vulnerability-scanners wifi-hacking wifi-security
8301
steampipe
turbot / steampipe
Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
steampipe postgresql postgresql-fdw cloud security aws azure cis cnapp cspm devops devsecops gcp golang kubernetes terraform etl sqlite zero-etl hacktoberfest
Language:Go 6992
firezone
firezone / firezone
Enterprise-ready zero-trust access platform built on WireGuard®.
cloud devsecops elixir elixir-lang firewall liveview network network-security networking phoenix privacy rust-lang security self-hosted virtual-network vpn vpn-server wireguard wireguard-ui wireguard-vpn
Language:Elixir 6853
tfsec
aquasecurity / tfsec
Tfsec is now part of Trivy
aws azure ci compliance devops devsecops digitalocean go google-cloud-platform hacktoberfest infrastructure-as-code linter misconfiguration scanner security static-analysis terraform terraform-security vulnerability-scanners
Language:Go 6722
bunkerweb
bunkerity / bunkerweb
🛡️ Open-source and next-generation Web Application Firewall (WAF)
antibot bunkerized-nginx cybersecurity devops devsecops dnsbl docker hardening hosting kubernetes letsencrypt modsecurity nginx reverse-proxy security security-tuning swarm waf web-application-firewall web-security
Language:Python 6560
sottlmarek / DevSecOps
Ultimate DevSecOps library
security devops devsecops cloud tool aws k8s docker awesome-list azure gcp kubernetes ssdlc awesome cybersecurity serverless ci-cd automation containers
5758
infobyte / faraday
Open Source Vulnerability Management Platform
appsec burpsuite collaboration continuous-scanning cve cybersecurity devops devsecops infosec nessus nmap orchestration penetration-testing pentesting security security-audit security-automation vulnerability vulnerability-management vulnerability-scanners
Language:Python 5054
ThreatMapper
deepfence / ThreatMapper
Open Source Cloud Native Application Protection Platform (CNAPP)
cloud-native cloudsecurity cnapp compliance containers cspm cwpp devops devsecops hacktoberfest kubernetes observability registry-scanning scanning-tool secops security-tools threat-analysis vulnerability-detection vulnerability-management vulnerability-scanners
Language:TypeScript 4844
terrascan
tenable / terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
architecture aws aws-security azure-security cloud-security cloudsecurity devops devsecops gcp-security iac infrastructure infrastructure-as-code kubernetes sast scans security security-tools security-violations terraform terrascan
Language:Go 4767
devsecops / awesome-devsecops
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
devops devsecops podcast threat-intelligence
4643
kubernetes-goat
madhuakula / kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
kubernetes vulnerable-app security hacking pentesting infrastructure cloud-security docker container kubernetes-goat devsecops cloudsecurity kubernetes-security container-security owasp cloud-native k8s blueteam redteam
Language:HTML 4461
dalfox
hahwul / dalfox
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
bugbounty bugbounty-tool cicd-pipeline devsecops golang hacktoberfest security vulnerability xss xss-bruteforce xss-detection xss-exploit xss-scanner
Language:Go 3767
DefectDojo / django-DefectDojo
DevSecOps, ASPM, Vulnerability Management. All on one platform.
analytics appsec automation devsecops django hacktoberfest kubernetes owasp python security security-automation security-orchestration vulnerability-correlation vulnerability-databases vulnerability-management
Language:HTML 3733
deepfence / SecretScanner
:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:
scanning-tool secret-keys secrets-management infosectools vulnerability-scanners k8s containers kubernetes secrets docker security-tools security password secrets-detection devsecops hacktoberfest
Language:Go 3138
baidu / openrasp
🔥Open source RASP solution
devsecops iast rasp security waf
Language:C++ 2797
ContainerSSH
ContainerSSH / ContainerSSH
ContainerSSH: Launch containers on demand
containers devsecops docker kubernetes security security-tools ssh
Language:Go 2716
dependency-track
DependencyTrack / dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
owasp appsec security bom vulnerabilities component-analysis nvd software-security software-composition-analysis sca bill-of-materials package-url purl vulnerability-detection ossindex sbom devsecops security-automation cyclonedx hacktoberfest
Language:Java 2705
ajinabraham / nodejsscan
nodejsscan is a static security code scanner for Node.js applications.
code-analysis code-review devsecops javascript lint node node-security nodejs nodejsscan sast security security-scanner static-analysis
Language:CSS 2399
archerysec / archerysec
ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.
vulnerability-assessment vulnerabilities scanning pentesting vulnerability-management opensource pentesters secdevops devops devops-tools devsecops asoc aspm
Language:JavaScript 2296
Checkmarx / kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
appsec cloudnative devsecops golang hacktoberfest iac infrastructure-as-code open-policy-agent security security-tools vulnerability-detection vulnerability-scanners
Language:Open Policy Agent 2098
bearer
Bearer / bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
appsec compliance devsecops devsecops-tools security security-tools dataflow gdpr privacy sast static-code-analysis vulnerability security-audit security-scanner vulnerabilities code-quality static-analysis security-automation owasp
Language:Go 2053
cicd-goat
cider-security-research / cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
appsec cicd ctf devops devsecops gitlab infosec jenkins security
Language:Python 1950
DevSecOps-Playbook
6mile / DevSecOps-Playbook
This is a step-by-step guide to implementing a DevSecOps program for any size organization
devsecops playbook security
1909
DevSecOps
hahwul / DevSecOps
♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎
devsecops devops roadmap security awesome-list collections tools
Language:Go 1800
joseadanof / awesome-cloudnative-trainings
Awesome Trainings from Cloud Native Computing Foundation Projects and Kubernetes related software
cloud-native cncf containers continuous-learning devops devsecops istio k8s kubernetes linux-foundation service-mesh
1735
safety
pyupio / safety
Safety checks Python dependencies for known security vulnerabilities and suggests the proper remediations for vulnerabilities detected.
python security security-vulnerability travis vulnerability-scanners vulnerability-detection cicd dependency-management devsecops open-source-security package-management
Language:Python 1733
noseyparker
praetorian-inc / noseyparker
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.
credentials devsecops penetration-testing rust scanner secrets secrets-detection security security-tools
Language:Rust 1694
GitGuardian / ggshield
Find and fix 400+ types of hardcoded secrets and 70+ types of infrastructure-as-code misconfigurations.
apikey code credentials devsecops iac iac-security infrastructure-as-code key leak precommit scanning secrets-detection secrets-management security
Language:Python 1685
krol3 / container-security-checklist
Checklist for container security - devsecops practices
containers devsecops security
1525