security-tools

There are 300 repositories under security-tools topic.

x64dbg
x64dbg / x64dbg
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
debugger windows x64 disassembler reverse-engineering security x86 x86-64 cpp malware-analysis security-tools binary-analysis ctf dynamic-analysis exploit-development hacking oscp debugging program-analysis
Language:C++ 40138
aquasecurity / trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
security security-tools docker containers vulnerability-scanners vulnerability-detection vulnerability golang go kubernetes hacktoberfest devsecops misconfiguration infrastructure-as-code iac
Language:Go 16675
zinclabs / zincsearch
ZincSearch . A lightweight alternative to elasticsearch that requires minimal resources, written in Go.
go golang search searchengine modern vuejs elasticsearch opensearch log-analytics logging logs security-tools splunk
Language:Go 14609
gitleaks / gitleaks
Protect and discover secrets using Gitleaks 🔑
security security-tools git golang go secret gitleaks devsecops hacktoberfest
Language:Go 12017
personal-security-checklist
Lissy93 / personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2022
awesome awesome-list censorship checklist cybersecurity defense hacktoberfest hacktoberfest2022 open-source privacy privacy-protection protection security security-tools surveillance web-browsing
10887
trufflesecurity / trufflehog
Find credentials all over the place
secret trufflehog credentials security devsecops dynamic-analysis go golang security-tools
Language:Go 10677
CISOfy / lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
shell linux pci-dss compliance security-audit security-hardening security-scanner security-vulnerability hipaa unix vulnerability-detection vulnerability-scanners vulnerability-assessment devops devops-tools system-hardening hardening auditing gdpr security-tools
Language:Shell 10627
social-analyzer
qeeqbox / social-analyzer
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
osint social-media analyzer username profile reconnaissance pentest information-gathering pentesting social-analyzer person-profile javascript nodejs python security-tools analysis nodejs-cli cli sosint
Language:JavaScript 9857
future-architect / vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
vuls vulnerability-scanners golang go linux freebsd vulnerability-detection security security-tools cybersecurity security-vulnerability security-scanner security-hardening security-automation security-audit vulnerability-assessment vulnerability-management vulnerability-scanner vulnerabilities administrator
Language:Go 9852
RustScan
RustScan / RustScan
🤖 The Modern Port Scanner 🤖
security pentesting hacking port scanning networking security-tools nmap rust docker hacktoberfest
Language:Rust 9532
smicallef / spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
reconnaissance footprinting osint threatintel python infosec intelligence-gathering osint-reconnaissance attack-surface pentesting threat-intelligence security-tools information-gathering cybersecurity cti osint-framework attacksurface osint-tool pentest hacking
Language:Python 9335
secdev / scapy
Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.
scapy python network network-analysis network-visualization network-discovery python2 python3 pcap packet-capture packet-sniffer packet-analyser packet-crafting security security-tools network-security hacktoberfest
Language:Python 8552
toniblyx / my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
cloud auditing incident-response aws-inventory iam dfir cloudtrail aws-infrastructure aws-lambda security security-tools
Language:Shell 8031
fail2ban / fail2ban
Daemon to ban hosts that cause multiple authentication errors
linux macos security intrusion-prevention fail2ban bsd gplv2 python ban-hosts intrusion-detection ids ips anti-bot attack-prevention hids security-tools loganalyzer monitoring ban-management
Language:Python 8026
prowler
prowler-cloud / prowler
Prowler is an Open Source Security tool to perform Cloud Security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
security security-tools security-audit security-hardening hardening aws cis-benchmark assessment aws-auditing compliance gdpr hipaa cis forensics cloud well-architected devsecops azure
Language:Python 7901
securego / gosec
Golang security checker
golang security security-tools security-automation static-analysis static-code-analysis
Language:Go 6633
brakeman
presidentbeef / brakeman
A static analysis security vulnerability scanner for Ruby on Rails applications
ruby rails security static-analysis vulnerabilities brakeman security-vulnerability security-tools security-audit
Language:Ruby 6605
Sn1per
1N3 / Sn1per
Attack Surface Management Platform | Sn1perSecurity LLC
sn1per sn1per-professional bugbounty-platform attack-surface cybersecurity pentest-tool pentesting-tools pentest-scripts pentest-tools hacking-tools osint-tool osint-framework attacksurface penetration-testing pentesting security-tools attack-surface-management hacking security
Language:Shell 6217
monkey
guardicore / monkey
Infection Monkey - An open-source adversary emulation platform
penetration-testing security-tools security-automation infection-monkey adversary-emulation
Language:Python 6118
wazuh / wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
security compliance log-analysis vulnerability-detection cybersecurity file-integrity-monitoring infosec malware-detection cloud-security container-security security-automation security-tools siem xdr configuration-assessement incident-response pci-dss security-audit security-hardening wazuh
Language:C 5756
traitor
liamg / traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
gtfobins exploit privesc privilege-escalation hackthebox infosec redteam-tools security-tools cve-2021-3560 dirtypipe cve-2022-0847
Language:Go 5732
BishopFox / sliver
Adversary Emulation Framework
security-tools implant golang dns-server http c2 command-and-control red-team red-teaming red-team-engagement adversarial-attacks adversary-simulation sliver gplv3 dns
Language:Go 5420
rengine
yogeshojha / rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.
security-tools osint recon recon-engine reconnaissance scanner scanner-web rengine information-gathering bugbounty hacking scanning pentesting bug-bounty infosec penetration-testing
Language:JavaScript 5207
certificates
smallstep / certificates
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
tls x509 certificates security security-tools certificate-authority pki ca go acme-server ssh acme
Language:Go 5150
PyCQA / bandit
Bandit is a tool designed to find common security issues in Python code.
linter bandit security-tools security-scanner security static-code-analysis python
Language:Python 5055
NullArray / AutoSploit
Automated Mass Exploiter
metasploit python exploit exploitation offsec automation security-tools security
Language:Python 4725
google / osv-scanner
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
scanner security-audit security-tools vulnerability-scanner
Language:Go 4661
google / syzkaller
syzkaller is an unsupervised coverage-guided kernel fuzzer
linux kernel fuzz-testing fuzzing fuzzer testing security security-vulnerability security-tools
Language:Go 4620
edoardottt / awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
awesome awesome-list hacking search-engine osint awesome-lists dns hacking-tools domain exploit security security-tools vulnerability wifi-network bugbounty osint-tool vulnerabilities redteam redteaming cve
4521
urbanadventurer / WhatWeb
Next generation web scanner
security web scanner ruby penetration-testing kali-linux owasp penetration-testing-tools penetration-test hacking hacking-tools network-security recon appsec application-security pentesting pentesting-tools pentest web-hacking security-tools
Language:Ruby 4406
j3ssie / osmedeus
A Workflow Engine for Offensive Security
scanning reconnaissance penetration-testing security-tools pentest-tool hacking-tool information-gathering hacking osint osmedeus bugbounty pentesting golang security go bug-bounty
Language:Go 4344
1earn
ffffffff0x / 1earn
暂停维护 | ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
markdown-article linux-learning pentest study security collection blueteam redteam post-penetration ics-security writeup pentest-tool poc ctf security-tools infosec hacking
Language:C++ 4292
The-Z-Labs / linux-exploit-suggester
Linux privilege escalation auditing tool
exploits privilege-escalation-exploits kernel-exploitation applicable-exploits security-tools hacking-tool linux-exploits linux-kernel published-exploits
Language:Shell 4271
decalage2 / awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
awesome-list best-practices blue-team blueteam cis-benchmarks computer-security cyber-security cybersecurity infosec linux-hardening security security-hardening security-tools windows-hardening
4247
drk1wi / Modlishka
Modlishka. Reverse Proxy.
phishing penetration-testing-tools mitm reverse-proxy security-tools
Language:Go 4227
Cheatsheet-God
OlivierLaflamme / Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
penetration-testing security hacking cheatsheet oscp information-security pentesting howto-tutorial refresher penetration-test cheatsheet-god oscp5 oscp-tools oscp-journey penetration security-tools security-vulnerability hacking-tool hacking-code awesome
4227

Related Topics

api python serverless csharp anomaly-detection