Audit your Node version for known CVEs and patches
-
Updated
May 17, 2024 - JavaScript
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
Audit your Node version for known CVEs and patches
Audit your PHP version for known CVEs and patches
My useful files for penetration tests, security assessments, bug bounty and other security related stuff
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Github action to run PyCQA's bandit security linter.
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
An API and client for managing STIG assessments
Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.
Set of tools to audit SIP based VoIP Systems
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
The main goal of this project is the configuration and control of various types of devices operating in a corporate environment. Information security is the main direction of development. Roles have default settings that can be dynamically overridden using "inventories" folder rules based on subnet, host group (organizational unit or branch), OS.
🚧 Insights Compliance backend gets reports, and offers everything to know about them through an API
☸️ Mondoo Client Kubernetes Operator
JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
The dependency-check gradle plugin is a Software Composition Analysis (SCA) tool that allows projects to monitor dependent libraries for known, published vulnerabilities.
This Python script provides a sophisticated botnet detection system that leverages signature-based detection, machine learning algorithms, behavioral analysis, and traffic profiling to identify potential botnet activity in real-time. It also includes advanced alerting capabilities and integration with IP reputation services and SIEM for DETECTION!
secator - the pentester's swiss knife