credstash by fugue

A little utility for managing credentials in the cloud

updated at May 23, 2024, 8:06 p.m.

70 +0

2,056 +1

217 +0

sql_firewall by uptimejp

SQL Firewall Extension for PostgreSQL

updated at May 23, 2024, 9:33 p.m.

13 +0

174 +1

31 +0

matano by matanolabs

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

updated at May 23, 2024, 9:43 p.m.

21 +1

1,367 +3

91 +2

curiefense by curiefense

Curiefense is a unified, open source platform protecting cloud native applications.

updated at May 24, 2024, 4:10 a.m.

19 +0

717 +2

116 +1

phpsploit by nil0x42

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

updated at May 24, 2024, 6:31 a.m.

103 +0

2,156 +3

436 +1

ir-rescue by diogo-fernan

A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.

updated at May 24, 2024, 8:44 a.m.

44 -1

451 +2

94 +0

ansible-collection-hardening by dev-sec

This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL

updated at May 24, 2024, 10:50 a.m.

117 +0

3,713 +7

701 +2

Redcloud by khast3x

Automated Red Team Infrastructure deployement using Docker

updated at May 24, 2024, 2:44 p.m.

50 +0

1,185 +1

201 +0

lunasec by lunasec-io

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

updated at May 24, 2024, 3:14 p.m.

30 +0

1,413 +2

162 +0

Network-segmentation-cheat-sheet by sergiomarotco

Best practices for segmentation of the corporate network of any company

updated at May 24, 2024, 3:36 p.m.

64 +0

3,212 +15

262 -2

naxsi by nbs-system

NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX

updated at May 24, 2024, 3:44 p.m.

228 +0

4,774 -1

609 +1

tcpflow by simsong

TCP/IP packet demultiplexer. Download from:

updated at May 24, 2024, 4:23 p.m.

80 +0

1,648 +1

239 +0

arkime by arkime

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

updated at May 24, 2024, 4:24 p.m.

349 +0

6,151 +10

1,030 -1

fingerprintjs-android by fingerprintjs

Swiss army knife for identifying and fingerprinting Android devices. MIT license, no restrictions on usage in production.

updated at May 24, 2024, 5:35 p.m.

16 +0

543 +4

76 +0

PacketStreamer by deepfence

Distributed tcpdump for cloud native environments

updated at May 24, 2024, 5:47 p.m.

13 +0

1,854 +2

252 +0

openrasp by baidu

🔥Open source RASP solution

updated at May 24, 2024, 5:53 p.m.

108 +0

2,710 +5

589 +1

acra by cossacklabs

Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.

updated at May 24, 2024, 6:08 p.m.

40 +0

1,302 +1

127 +0

monkey by guardicore

Infection Monkey - An open-source adversary emulation platform

updated at May 24, 2024, 8:56 p.m.

241 -1

6,509 +6

760 +1

stenographer by google

Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. Discussion/announcements at stenographer@googlegroups.com

updated at May 24, 2024, 10:23 p.m.

104 +0

1,789 +1

233 +1

NodeGoat by OWASP

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

updated at May 24, 2024, 10:57 p.m.

78 +0

1,834 +3

1,582 +2