angularjs-csti-scanner by tijme

Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.

created at Feb. 1, 2017, 1:24 p.m.

16 +0

288 +0

86 +0

awesome-arm-exploitation by HenryHoggard

A collection of awesome videos, articles, books and resources about ARM exploitation.

created at June 30, 2019, 3:09 p.m.

16 +0

300 +1

46 +0

fingerprintjs-android by fingerprintjs

Swiss army knife for identifying and fingerprinting Android devices. MIT license, no restrictions on usage in production.

created at Oct. 20, 2020, 2:46 p.m.

16 +0

534 +1

76 +0

reFlutter by ptswarm

Flutter Reverse Engineering Framework

created at Sept. 29, 2021, 7:35 p.m.

16 +0

1,208 +0

169 +1

keyscope by SpectralOps

Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust

created at Oct. 1, 2021, 12:01 p.m.

17 +0

376 +0

119 +0

insider by insidersec

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

created at Nov. 12, 2019, 8:07 p.m.

17 +0

485 +1

80 +0

awesome-electronjs-hacking by doyensec

A curated list of awesome resources about Electron.js (in)security

created at June 1, 2020, 10:02 a.m.

17 +0

539 -3

61 +0

bearer by Bearer

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

created at Sept. 27, 2022, 5:02 p.m.

19 +0

1,737 +9

80 +2

curiefense by curiefense

Curiefense is a unified, open source platform protecting cloud native applications.

created at Oct. 27, 2020, 4:53 p.m.

19 +0

711 +2

114 +1

matano by matanolabs

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

created at July 3, 2022, 1:41 p.m.

20 +0

1,355 +1

86 -2

monsoon by RedTeamPentesting

Fast HTTP enumerator

created at Nov. 6, 2017, 8:52 p.m.

20 +0

440 +0

38 -2

is-website-vulnerable by lirantal

finds publicly known security vulnerabilities in a website's frontend JavaScript libraries

created at Oct. 5, 2019, 10:52 a.m.

22 +0

1,904 +3

104 -1

chamber by segmentio

CLI for managing secrets

created at June 10, 2017, 12:43 a.m.

24 +0

2,402 +3

167 +0

kics by Checkmarx

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

created at July 8, 2020, 9:46 p.m.

25 +0

1,898 +11

286 +0

teller by tellerops

Cloud native secrets management for developers - never leave your command line for secrets.

created at March 24, 2021, 10:49 a.m.

26 +0

2,541 +7

164 +0

pig by rafael-santiago

A Linux packet crafting tool.

created at April 27, 2015, 2:36 a.m.

27 +0

459 -1

42 +0

honssh by tnich

HonSSH is designed to log all SSH communications between a client and server.

created at March 16, 2015, 5:39 p.m.

29 +0

370 -1

74 +0

cicd-goat by cider-security-research

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

created at March 27, 2022, 10 a.m.

29 +0

1,807 +1

262 +1

passpie by marcwebbie

Multiplatform command-line password manager

created at Dec. 1, 2014, 12:39 a.m.

30 +0

923 +1

65 +0

lunasec by lunasec-io

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

created at March 16, 2021, 4:48 a.m.

30 +0

1,406 +0

163 +0