Search awesome repositories

This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL

Open source version of Google Authenticator (except the Android app)

Open Source Cloud Native Application Protection Platform (CNAPP)

GRR Rapid Response: remote live forensics for incident response

NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

A collected list of awesome security talks

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

Loki - Simple IOC and YARA Scanner

Best practices for segmentation of the corporate network of any company

:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

Cloud native secrets management for developers - never leave your command line for secrets.

🔥Open source RASP solution

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

CLI for managing secrets

Adversary tradecraft detection, protection, and hunting

Rapid spam filtering system.

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

A fork and successor of the Sulley Fuzzing Framework

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

A little utility for managing credentials in the cloud

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

finds publicly known security vulnerabilities in a website's frontend JavaScript libraries

Fast Incident Response

Rekall Memory Forensic Framework

LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures from Android devices. It also minimizes its interaction between user and kernel space processes during acquisition, which allows it to produce memory captures that are more forensically sound than those of other tools designed for Linux memory acquisition.

Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

:star: :star: Distributed tcpdump for cloud native environments :star: :star:

Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms. It will gain more portability/integration over time.

Confidant: your secret keeper. https://lyft.github.io/confidant