Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
-
Updated
Jan 27, 2023 - Shell
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Prowler is an Open Source Security tool to perform Cloud Security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
A static analysis security vulnerability scanner for Ruby on Rails applications
capture SSL/TLS text content without CA cert using eBPF. supports Linux/Android x86_64/Aarch64.
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
Open Source Vulnerability Management Platform
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Web Application Security Scanner Framework
the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory ext…
Source Code Security Audit (源代码安全审计)
Advanced vulnerability scanning with Nmap NSE
Patch-level verification for Bundler
DEPRECATED, bettercap developement moved here: https://github.com/bettercap/bettercap
Automated NoSQL database enumeration and web application exploitation tool.
Find leaked secrets via github search