security-automation

There are 139 repositories under security-automation topic.

future-architect / vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
vuls vulnerability-scanners golang go linux freebsd vulnerability-detection security security-tools cybersecurity security-vulnerability security-scanner security-hardening security-automation security-audit vulnerability-assessment vulnerability-management vulnerability-scanner vulnerabilities administrator
Language:Go 10810
wazuh / wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
cloud-security compliance configuration-assessement container-security cybersecurity file-integrity-monitoring incident-response infosec log-analysis malware-detection pci-dss security security-audit security-automation security-hardening security-tools siem vulnerability-detection wazuh xdr
Language:C 9720
xonsh
xonsh / xonsh
:shell: Python-powered shell. Full-featured and cross-platform.
artificial-intelligence bash chatgpt cli command-line console data-engineering data-science devops fish hacktoberfest iterm2 python raspberry-pi security-automation shell windows-terminal xonsh zsh
Language:Python 8199
Scanners-Box
We5ter / Scanners-Box
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
apk-analysis binary-analysis code-analyzer devsecops exploitation-framework hacker-tools information-security malware-analysis penetration-testing pentesting-tools privacy-compliance redteam-tools security-audit security-automation smart-contracts static-analysis vulnerability-scanners wifi-hacking wifi-security
8129
securego / gosec
Go security checker
golang security security-automation security-tools static-analysis static-code-analysis
Language:Go 7610
monkey
guardicore / monkey
Infection Monkey - An open-source adversary emulation platform
adversary-emulation infection-monkey penetration-testing security-automation security-tools
Language:Python 6569
caldera
mitre / caldera
Automated Adversary Emulation Platform
adversary-emulation caldera cybersecurity hacking mitre mitre-attack mitre-corporation red-team security-automation security-testing
Language:Python 5380
infobyte / faraday
Open Source Vulnerability Management Platform
appsec burpsuite collaboration continuous-scanning cve cybersecurity devops devsecops infosec nessus nmap orchestration penetration-testing pentesting security security-audit security-automation vulnerability vulnerability-management vulnerability-scanners
Language:Python 4727
builtbybel / privatezilla
👀👮🐢🔥Performs a privacy & security check of Windows 10
debloat powershell privacy privacy-protection security security-automation telemetry windows-10
Language:C# 3529
DefectDojo / django-DefectDojo
DevSecOps, ASPM, Vulnerability Management. All on one platform.
python vulnerability-databases django security owasp analytics vulnerability-management automation security-automation security-orchestration devsecops vulnerability-correlation kubernetes hacktoberfest appsec
Language:HTML 3520
dependency-track
DependencyTrack / dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
owasp appsec security bom vulnerabilities component-analysis nvd software-security software-composition-analysis sca bill-of-materials vulndb package-url purl vulnerability-detection ossindex sbom devsecops security-automation cyclonedx
Language:Java 2470
flipkart-incubator / Astra
Automated Security Testing For REST API's
security restapiautomation python owasp penetration-testing-framework postman-collection ci-cd sdlc penetration-testing security-automation
Language:Python 2462
ComplianceAsCode / content
Security automation content in SCAP, Bash, Ansible, and other formats
security compliance scap xccdf oval cpe cce usgcb pci-dss ospp stig application-security security-tools security-hardening security-automation security-profile hardening information-security cybersecurity ansible
Language:Shell 2135
Yamato-Security / hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
attack cybersecurity detection dfir event forensics hayabusa hunting incident incident-response logs response rust security security-automation sigma threat threat-hunting windows yamato
Language:Rust 2095
hisxo / gitGraber
gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
security-tools monitor bugbounty security-automation osint redteam realtime leaks
Language:Python 1966
aress31 / burpgpt
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
ai burp-extensions burpsuite cybersecurity gpt openai pentesting security security-automation webapp burp-plugin burpsuite-extender gpt-3 openai-api
Language:Java 1958
bearer
Bearer / bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
appsec code-quality compliance dataflow devsecops devsecops-tools gdpr owasp privacy sast security security-audit security-automation security-scanner security-tools static-analysis static-code-analysis vulnerabilities vulnerability
Language:Go 1887
SubDomainizer
nsonaniya2010 / SubDomainizer
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
python3 security-tools security-automation security subdomain-scanner subdomain-enumeration s3-bucket find-subdomains cloud-storage-services external-javascripts secrets secretfinder bugbounty find-secrets s3-buckets bug-bounty madeinindia
Language:Python 1684
danieldurnea / FBI-tools
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
forensics osint cybersecurity hacking security-automation security-tools infosec awesome-list incident-response penetration-testing reconnaissance security awesome pentesting bug-bounty
1583
fixinventory
someengineering / fixinventory
Fix Inventory consolidates user, resource, and configuration data from your cloud environments into a unified, graph-based asset inventory.
aws cnapp cspm cybersecurity digitalocean gcp infrastructure-as-code open-source security security-automation
Language:Python 1569
cisagov / ScubaGear
Automation to assess the state of your M365 tenant against CISA's baselines
assessment-tool cisa contributions-welcome cybersecurity m365 open-policy-agent open-source powershell rego scuba security security-automation
Language:Open Policy Agent 1479
w5
w5teams / w5
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效
soar hacking w5 w5soar tools hack security security-tools security-automation hacker python3 automation python-script security-audit devops shuffle walkoff
Language:Python 1474
Shuffle
Shuffle / Shuffle
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
automation cybersecurity openapi shuffle security workflow-editor integrations mitre-attack agplv3 discord soar hacktoberfest security-orchestrator orchestration security-automation orchestrator orchestrator-gui
Language:Shell 1393
konstruktoid / hardening
Hardening Ubuntu. Systemd edition.
hacktoberfest hardening information-security security security-automation security-compliance security-hardening security-tools shell systemd ubuntu ubuntu-server
Language:Shell 1335
Sooty
TheresAFewConors / Sooty
The SOC Analysts all-in-one CLI tool to automate and speed up workflow.
python soc security security-automation analysts automation reputation-check urlscan proofpoint-decoder phishing analysis dns workflow soc-analysts hash cybersecurity
Language:Python 1313
pacbot
tmobile / pacbot
PacBot (Policy as Code Bot)
cloud-security security aws continous-compliance cloud-auditing policy-as-code cloud security-automation aws-security java angularjs cloud-compliance-reporting cloud-native spring-boot
Language:Java 1277
cfn_nag
stelligent / cfn_nag
Linting tool for CloudFormation templates
continuous-testing unit-testing cloudformation aws devops iam-rules cloudformation-templates cfn-nag open-source static-analysis stelligent cfn lint linting amazon security security-automation cloudformation-security hacktoberfest compliance
Language:Ruby 1247
fkie-cad / FACT_core
Firmware Analysis and Comparison Tool
firmware-analysis firmware-tools security security-automation
Language:Python 1190
intel / cve-bin-tool
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
cve security hacktoberfest vulnerabilities cvss swrepo system-tools devsecops security-automation security-tools python sbom vulnerability sbom-tool
Language:Python 1149
dropbox / securitybot
Distributed alerting for the masses!
bot duo security-automation slack
Language:Python 992
APTRS
APTRS / APTRS
Automated Penetration Testing Reporting System
penetration-testing pentest-report pentesting pentesting-tools python reporting django aptrs infosec pentest security security-automation
Language:Python 785
flosell / trailscraper
A command-line tool to get valuable information out of AWS CloudTrail
aws-cloudtrail aws aws-cloudformation iam heuristic iam-actions security security-automation cloud cloudtrail cloudtrail-log-analytics cloudtrail-consumer hacktoberfest
Language:Python 766
tcosolutions / betterscan
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan
sast code-quality code-quality-analyzer static-analysis static-code-analysis static-analyzers devsecops sonarqube compliance devops devops-tools gdpr owasp security-audit security-automation security-scanner security-tools vulnerability vulnerability-scanner security-orchestration
Language:Python 766
secureCodeBox
secureCodeBox / secureCodeBox
secureCodeBox (SCB) - continuous secure delivery out of the box
devsecops hacktoberfest kubernetes kubernetes-operator owasp owasp-zap securecodebox security security-automation security-testing security-tools
Language:JavaScript 743
google / turbinia
Automation and Scaling of Digital Forensics Tools
cloud dfir forensics security security-automation
Language:Python 726
aws-samples / aws-secure-environment-accelerator
The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.
aws security landingzone security-automation accelerator networking solution aws-accelerator customizable customized-architectures
Language:HTML 721