/

devsecops

security
cloud
vulnerability-scanners
kubernetes
security-tools
static-analysis
aws
azure
compliance
devops
vulnerability
misconfiguration
golang
infrastructure-as-code
web-security
gdpr
security-audit
networking
zero-trust
network
vpn
wireguard
wireguard-vpn
wireguard-ui
vpn-server
virtual-network
vulnerability-detection
docker
go
hacktoberfest
iac
containers

aquasecurity/trivy
502日前20.5k

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

vulnerability
vulnerability-scanners
security
vulnerability-detection
misconfiguration
docker
go
hacktoberfest
kubernetes
golang
devsecops
security-tools
iac
infrastructure-as-code
containers

MobSF/Mobile-Security-Framework-MobSF
501日前15.9k

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

mobile-security
web-security
devsecops
static-analysis
api-testing
malware-analysis
dynamic-analysis
owasp
apk
rest
mobsf
android-security
windows-mobile-security
ios-security
runtime-security
cwe

prowler-cloud/prowler
503日前9.2k

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

python
security
aws
azure
gdpr
compliance
devsecops
security-tools
cloud
iam
security-audit
security-hardening
hardening
cis-benchmark
forensics
well-architected

gravitl/netmaker
502日前8.7k

Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

mesh
wg-quick
security
kubernetes
networking
zero-trust
devsecops
network
cloud
vpn
k8s
wireguard
wireguard-vpn
wireguard-ui
vpn-server
virtual-network

aquasecurity/tfsec
502日前6.5k

Security scanner for your Terraform code

vulnerability-scanners
security
misconfiguration
terraform
aws
azure
compliance
devsecops
infrastructure-as-code
linter
ci
google-cloud-platform
static-analysis
devops
scanner
digitalocean

turbot/steampipe
502日前6.2k

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

postgresql
security
sql
steampipe
postgresql-fdw
cis
cnapp
cspm
aws
azure
kubernetes
golang
devsecops
cloud
gcp
devops

firezone/firezone
503日前6.0k

WireGuard®-based zero trust access platform that supports OIDC authentication, user/group sync, and requires zero firewall configuration.

security
elixir
networking
privacy
devsecops
network
cloud
vpn
self-hosted
firewall
wireguard
wireguard-vpn
wireguard-ui
vpn-server
network-security
virtual-network

infobyte/faraday
501日前4.5k

Open Source Vulnerability Management Platform

vulnerability
vulnerability-scanners
nmap
security
infosec
collaboration
devsecops
devops
penetration-testing
security-audit
pentesting
vulnerability-management
continuous-scanning
burpsuite
nessus
security-automation

ajinabraham/nodejsscan
505日前2.3k

nodejsscan is a static security code scanner for Node.js applications.

nodejs
security
node
code-review
javascript
lint
devsecops
static-analysis
sast
code-analysis
security-scanner
node-security
nodejsscan

lunasec-io/lunasec
506日前1.4k

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

security
gdpr
tokenization
web-security
compliance
soc2
pci-dss
zero-trust
devsecops
log4shell
dependency-analysis
scanning
cybersecurity
security-tools
scanning-tool
cve-scanning