Automated web vulnerability scanning with LLM agents

The Most Advanced Client-Side Prototype Pollution Scanner

a better dotenv–from the creator of `dotenv`

⚡ Fast, async, stream-based link checker written in Rust. Finds broken URLs and mail addresses inside Markdown, HTML, reStructuredText, websites and more!

CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.

Secret Magpie - Secret Detection Tool

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

Access large language models from the command-line

Nuclei AI - Browser Extension for Rapid Nuclei Template Generation

Component to perform network speed tests against Cloudflare's edge network

A collection of Turbo Intruder scripts.

A GitHub App that enforces approval policies on pull requests

three thousand real world bug linter

A tool for customers to evaluate their AWS service configurations based on AWS and community best practices and receive recommendations on potential improvements.

Generate CloudFormation / Terraform / Troposphere templates from your existing AWS resources.

Checkmate is an open-source, self-hosted tool designed to track and monitor server hardware, uptime, response times, and incidents in real-time with beautiful visualizations.

secureCodeBox (SCB) - continuous secure delivery out of the box

Cloudlist is a tool for listing Assets from multiple Cloud Providers.

A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

Quick and Easy server testing/validation

Automated CIS Benchmark Compliance Remediation for Amazon 2023 with Ansible

Packer templates to create hardened Ubuntu server images.

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

The tool to check the availability or syntax of domain, IP or URL.

Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains use…

Scan for misconfigured S3 buckets across S3-compatible APIs!

Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.

The open source Tines / Splunk SOAR alternative for security and IT engineers. Built on simple YAML templates for integrations and response-as-code.

dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!