There are 436 repositories under security-tools topic.
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024
Find and verify secrets
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
A static analysis security vulnerability scanner for Ruby on Rails applications
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
Infection Monkey - An open-source adversary emulation platform
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
Linux privilege escalation auditing tool
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Tools and Techniques for Red Team / Penetration Testing
Next generation web scanner