#

security-audit

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

Here are 231 public repositories matching this topic...

prowler

prowler-cloud / prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

python aws security security-audit cloud azure iam gcp forensics compliance hardening security-hardening gdpr multi-cloud security-tools devsecops cis-benchmark well-architected

Updated May 31, 2024
Python

infobyte / faraday

Open Source Vulnerability Management Platform

Updated May 23, 2024
Python

ysrc / xunfeng

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

security security-audit scanner exploits infosec pentesting vulnerability-detection vulnerability-scanners vulnerability-assessment

Updated Apr 16, 2024
Python

FeeiCN / Cobra

Source Code Security Audit (源代码安全审计)

security-audit cobra security-scanner security-tools sourcecode-analysis code-audit

Updated Sep 16, 2022
Python

codingo / NoSQLMap

Automated NoSQL database enumeration and web application exploitation tool.

Updated May 20, 2024
Python

techgaun / github-dorks

Find leaked secrets via github search

security-audit hacking hacktoberfest dork dorker github-dork

Updated Dec 19, 2023
Python

grayddq / GScan

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。

security auditing security-audit security-tools vulnerability-scanning security-scanning

Updated Aug 7, 2022
Python

codingo / Reconnoitre

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Updated Dec 11, 2022
Python

OWASP / owasp-masvs

The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

security security-audit mobile gitbook verification audit owasp ios-app standard penetration-testing android-app security-standards penetration-tests mstg masvs mastg

Updated May 19, 2024
Python

inql

doyensec / inql

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

graphql security-audit penetration-testing bugbounty security-scanner burpsuite security-tools burp-extensions graphql-security api-documentation-tool bugbounty-tool

Updated Apr 11, 2024
Python

w5teams / w5

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

security devops security-audit automation tools hack python-script hacking python3 shuffle hacker security-automation security-tools soar walkoff w5 w5soar

Updated Dec 11, 2023
Python

ssh-mitm

ssh-mitm / ssh-mitm

SSH-MITM - ssh audits made simple

ssh security security-audit proxy ssh-server mitm sftp scp ssh-client mitmproxy mitm-server mitm-attacks security-tools ssh-mitm

Updated May 21, 2024
Python

m4n3dw0lf / pythem

pentest framework

Updated Feb 21, 2019
Python

sysreptor

Syslifters / sysreptor

Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.

Updated May 31, 2024
Python

codingo / VHostScan

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Updated Dec 11, 2023
Python

cddmp / enum4linux-ng

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

security security-audit enumeration pentest ctf-tools enum4linux htb hackthebox pentest-tools

Updated Apr 18, 2024
Python

vchinnipilli / kubestriker

A Blazing fast Security Auditing tool for Kubernetes

docker kubernetes aws security devops security-audit automation azure containers gke infosec security-tools docker-security container-security aks eks informationsecurity kubernetes-security

Updated Apr 6, 2024
Python

pypa / pip-audit

Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them

python security security-audit supply-chain pip

Updated May 31, 2024
Python

owasp-dep-scan / dep-scan

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.

security-audit containers dependency-analysis vex compliance cve sca vulnerability-scanners security-tools devsecops reachability-analysis sbom cyclonedx supply-chain-security risk-audit dependency-audit

Updated Jun 1, 2024
Python

ElectricEye

jonrau1 / ElectricEye

ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks

Updated May 20, 2024
Python

Followers: 36.1k followers
Wikipedia: Wikipedia