Hunt for security weaknesses in Kubernetes clusters
Support
Quality
Security
License
Reuse
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Support
Quality
Security
License
Reuse
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Support
Quality
Security
License
Reuse
Automatically install all Kali linux tools
Support
Quality
Security
License
Reuse
Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
Support
Quality
Security
License
Reuse
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
Support
Quality
Security
License
Reuse
Scanning APK file for URIs, endpoints & secrets.
Support
Quality
Security
License
Reuse
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
Support
Quality
Security
License
Reuse
WiFi security auditing tools suite
Support
Quality
Security
License
Reuse
Snyk CLI scans and monitors your projects for security vulnerabilities.
Support
Quality
Security
License
Reuse
Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
Support
Quality
Security
License
Reuse
Monitor linux processes without root permissions
Support
Quality
Security
License
Reuse
Spectre, Meltdown, Foreshadow, Fallout, RIDL, ZombieLoad vulnerability/mitigation checker for Linux & BSD
Support
Quality
Security
License
Reuse
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories: www.shhgit.com
Support
Quality
Security
License
Reuse
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
Support
Quality
Security
License
Reuse
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Support
Quality
Security
License
Reuse
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
Support
Quality
Security
License
Reuse
Web Application Security Scanner Framework
Support
Quality
Security
License
Reuse
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
Support
Quality
Security
License
Reuse
Cameradar hacks its way into RTSP videosurveillance cameras
Support
Quality
Security
License
Reuse
Generic Signature Format for SIEM Systems
Support
Quality
Security
License
Reuse
:busts_in_silhouette: A bash-tool to store your private data inside a git repository.
Support
Quality
Security
License
Reuse
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
Support
Quality
Security
License
Reuse
A
Android-PIN-Bruteforceby urbanadventurer
Shell 
3075 Version:Current
License: No License (No License)
License: No License (No License)Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)
Support
Quality
Security
License
Reuse
An enterprise friendly way of detecting and preventing secrets in code.
Support
Quality
Security
License
Reuse
The Leading Security Assessment Framework for Android.
Support
Quality
Security
License
Reuse
cSploit - The most complete and advanced IT security professional toolkit on Android.
Support
Quality
Security
License
Reuse
Manages application of security headers with many safe defaults
Support
Quality
Security
License
Reuse
Source Code Security Audit (源代码安全审计)
Support
Quality
Security
License
Reuse
Tool to look for several security related Android application vulnerabilities
Support
Quality
Security
License
Reuse
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Support
Quality
Security
License
Reuse
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Support
Quality
Security
License
Reuse
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
Support
Quality
Security
License
Reuse
Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Support
Quality
Security
License
Reuse
🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection
Support
Quality
Security
License
Reuse
Network Analysis Tool
Support
Quality
Security
License
Reuse
Source Code Security Audit (源代码安全审计)
Support
Quality
Security
License
Reuse
InSpec: Auditing and Testing Framework
Support
Quality
Security
License
Reuse
:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:
Support
Quality
Security
License
Reuse
Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results
Support
Quality
Security
License
Reuse
Cloud Security Posture Management (CSPM)
Support
Quality
Security
License
Reuse
The Leading Security Assessment Framework for Android.
Support
Quality
Security
License
Reuse
user.js -- Firefox configuration hardening
Support
Quality
Security
License
Reuse
Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
Support
Quality
Security
License
Reuse
Patch-level verification for Bundler
Support
Quality
Security
License
Reuse
a drop-in replacement for Nmap powered by shodan.io
Support
Quality
Security
License
Reuse
一个能让你了解所有函数调用顺序以及函数耗时的Android库(无需侵入式代码)
Support
Quality
Security
License
Reuse
Real-time HTTP Intrusion Detection
Support
Quality
Security
License
Reuse
Automated NoSQL database enumeration and web application exploitation tool.
Support
Quality
Security
License
Reuse
apk.sh makes reverse engineering Android apps easier, automating some repetitive tasks like pulling, decoding, rebuilding and patching an APK.
Support
Quality
Security
License
Reuse
k
kube-hunterby aquasecurity
Hunt for security weaknesses in Kubernetes clusters
Python 4287Updated: 1 y ago License: Permissive (Apache-2.0)
4287Updated: 1 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
w
wstgby OWASP
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Shell 4215Updated: 3 y ago License: Strong Copyleft (CC-BY-SA-4.0)
4215Updated: 3 y ago License: Strong Copyleft (CC-BY-SA-4.0)Support
Quality
Security
License
Reuse
t
terrascanby tenable
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Go 4078Updated: 1 y ago License: Permissive (Apache-2.0)
4078Updated: 1 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
k
katoolinby LionSec
Automatically install all Kali linux tools
Python 4059Updated: 2 y ago License: Strong Copyleft (GPL-2.0)
4059Updated: 2 y ago License: Strong Copyleft (GPL-2.0)Support
Quality
Security
License
Reuse
m
metasploitable3by rapid7
Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.
HTML 4053Updated: 2 y ago License: Proprietary (Proprietary)
4053Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
A
ApplicationInspectorby microsoft
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
C# 4052Updated: 2 y ago License: Permissive (MIT)
4052Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
a
apkleaksby dwisiswant0
Scanning APK file for URIs, endpoints & secrets.
Python 3977Updated: 1 y ago License: Permissive (Apache-2.0)
3977Updated: 1 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
d
dnstwistby elceef
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
Python 3960Updated: 1 y ago License: Permissive (Apache-2.0)
3960Updated: 1 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
a
aircrack-ngby aircrack-ng
WiFi security auditing tools suite
C 3949Updated: 1 y ago License: Strong Copyleft (GPL-2.0)
3949Updated: 1 y ago License: Strong Copyleft (GPL-2.0)Support
Quality
Security
License
Reuse
s
snykby snyk
Snyk CLI scans and monitors your projects for security vulnerabilities.
TypeScript 3821Updated: 3 y ago License: Proprietary (Proprietary)
3821Updated: 3 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
T
ThreatMapperby deepfence
Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
Go 3769Updated: 1 y ago License: Permissive (Apache-2.0)
3769Updated: 1 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
p
pspyby DominicBreuker
Monitor linux processes without root permissions
Go 3753Updated: 1 y ago License: Strong Copyleft (GPL-3.0)
3753Updated: 1 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
s
spectre-meltdown-checkerby speed47
Spectre, Meltdown, Foreshadow, Fallout, RIDL, ZombieLoad vulnerability/mitigation checker for Linux & BSD
Shell 3660Updated: 2 y ago License: No License (No License)
3660Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
s
shhgitby eth0izzle
Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories: www.shhgit.com
JavaScript 3641Updated: 2 y ago License: Permissive (MIT)
3641Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
T
ThreatHunter-Playbookby OTRF
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
Python 3521Updated: 1 y ago License: Permissive (MIT)
3521Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
p
pacuby RhinoSecurityLabs
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Python 3420Updated: 2 y ago License: Permissive (BSD-3-Clause)
3420Updated: 2 y ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
k
kubernetes-goatby madhuakula
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
HTML 3418Updated: 1 y ago License: Permissive (MIT)
3418Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
a
arachniby Arachni
Web Application Security Scanner Framework
Ruby 3376Updated: 1 y ago License: Proprietary (Proprietary)
3376Updated: 1 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
a
axiomby pry0cc
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
Shell 3362Updated: 1 y ago License: Permissive (MIT)
3362Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
c
cameradarby Ullaakut
Cameradar hacks its way into RTSP videosurveillance cameras
Go 3358Updated: 1 y ago License: Permissive (MIT)
3358Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
s
sigmaby Neo23x0
Generic Signature Format for SIEM Systems
Python 3277Updated: 4 y ago License: No License (No License)
3277Updated: 4 y ago License: No License (No License)Support
Quality
Security
License
Reuse
g
git-secretby sobolevn
:busts_in_silhouette: A bash-tool to store your private data inside a git repository.
Shell 3229Updated: 1 y ago License: Permissive (MIT)
3229Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
S
Security-PPTby FeeiCN
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
HTML 3148Updated: 1 y ago License: No License (No License)
3148Updated: 1 y ago License: No License (No License)Support
Quality
Security
License
Reuse
A
Android-PIN-Bruteforceby urbanadventurer
Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)
Shell 3075Updated: 1 y ago License: No License (No License)
3075Updated: 1 y ago License: No License (No License)Support
Quality
Security
License
Reuse
d
detect-secretsby Yelp
An enterprise friendly way of detecting and preventing secrets in code.
Python 3073Updated: 1 y ago License: Permissive (Apache-2.0)
3073Updated: 1 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
d
drozerby WithSecureLabs
The Leading Security Assessment Framework for Android.
Python 3071Updated: 1 y ago License: Proprietary (Proprietary)
3071Updated: 1 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
a
androidby cSploit
cSploit - The most complete and advanced IT security professional toolkit on Android.
Java 3046Updated: 1 y ago License: Strong Copyleft (GPL-3.0)
3046Updated: 1 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
s
secure_headersby github
Manages application of security headers with many safe defaults
Ruby 3040Updated: 2 y ago License: Permissive (MIT)
3040Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
C
Cobraby FeeiCN
Source Code Security Audit (源代码安全审计)
Python 3024Updated: 1 y ago License: Permissive (MIT)
3024Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
q
qarkby linkedin
Tool to look for several security related Android application vulnerabilities
Python 2988Updated: 1 y ago License: Proprietary (Proprietary)
2988Updated: 1 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
t
terrascanby accurics
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Go 2922Updated: 3 y ago License: Permissive (Apache-2.0)
2922Updated: 3 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
T
TheHiveby TheHive-Project
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
Scala 2916Updated: 2 y ago License: Strong Copyleft (AGPL-3.0)
2916Updated: 2 y ago License: Strong Copyleft (AGPL-3.0)Support
Quality
Security
License
Reuse
g
gauby lc
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
Go 2881Updated: 1 y ago License: Permissive (MIT)
2881Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
I
IntelOwlby intelowlproject
Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Python 2796Updated: 1 y ago License: Strong Copyleft (AGPL-3.0)
2796Updated: 1 y ago License: Strong Copyleft (AGPL-3.0)Support
Quality
Security
License
Reuse
a
apk-mitmby shroudedcode
🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection
TypeScript 2720Updated: 2 y ago License: Permissive (MIT)
2720Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
B
BruteSharkby odedshimon
Network Analysis Tool
C# 2708Updated: 1 y ago License: Strong Copyleft (GPL-3.0)
2708Updated: 1 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
c
cobraby WhaleShark-Team
Source Code Security Audit (源代码安全审计)
Python 2699Updated: 3 y ago License: Permissive (MIT)
2699Updated: 3 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
i
inspecby inspec
InSpec: Auditing and Testing Framework
Ruby 2686Updated: 1 y ago License: Proprietary (Proprietary)
2686Updated: 1 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
S
SecretScannerby deepfence
:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:
Go 2642Updated: 1 y ago License: Permissive (MIT)
2642Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
S
Scumblrby Netflix-Skunkworks
Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results
Ruby 2624Updated: 3 y ago License: Permissive (Apache-2.0)
2624Updated: 3 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
c
cloudsploitby aquasecurity
Cloud Security Posture Management (CSPM)
JavaScript 2616Updated: 1 y ago License: Strong Copyleft (GPL-3.0)
2616Updated: 1 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
d
drozerby FSecureLABS
The Leading Security Assessment Framework for Android.
Python 2609Updated: 3 y ago License: Proprietary (Proprietary)
2609Updated: 3 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
u
user.jsby pyllyukko
user.js -- Firefox configuration hardening
JavaScript 2559Updated: 2 y ago License: Permissive (MIT)
2559Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
A
AttackSurfaceAnalyzerby microsoft
Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
C# 2558Updated: 1 y ago License: Permissive (MIT)
2558Updated: 1 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
b
bundler-auditby rubysec
Patch-level verification for Bundler
Ruby 2531Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
2531Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
S
Smapby s0md3v
a drop-in replacement for Nmap powered by shodan.io
Go 2470Updated: 1 y ago License: Strong Copyleft (AGPL-3.0)
2470Updated: 1 y ago License: Strong Copyleft (AGPL-3.0)Support
Quality
Security
License
Reuse
A
AppMethodOrderby zjw-swun
一个能让你了解所有函数调用顺序以及函数耗时的Android库(无需侵入式代码)
Java 2455Updated: 3 y ago License: No License (No License)
2455Updated: 3 y ago License: No License (No License)Support
Quality
Security
License
Reuse
t
telerby kitabisa
Real-time HTTP Intrusion Detection
Go 2446Updated: 1 y ago License: Permissive (Apache-2.0)
2446Updated: 1 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
N
NoSQLMapby codingo
Automated NoSQL database enumeration and web application exploitation tool.
Python 2414Updated: 1 y ago License: Strong Copyleft (GPL-3.0)
2414Updated: 1 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
a
apk.shby ax
apk.sh makes reverse engineering Android apps easier, automating some repetitive tasks like pulling, decoding, rebuilding and patching an APK.
Shell 2385Updated: 1 y ago License: Strong Copyleft (GPL-3.0)
2385Updated: 1 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse