Awesome Security

A little utility for managing credentials in the cloud

The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.

finds publicly known security vulnerabilities in a website's frontend JavaScript libraries

Fast Incident Response

Rekall Memory Forensic Framework

LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures from Android devices. It also minimizes its interaction between user and kernel space processes during acquisition, which allows it to produce memory captures that are more forensically sound than those of other tools designed for Linux memory acquisition.

Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

:star: :star: Distributed tcpdump for cloud native environments :star: :star:

Hardened allocator designed for modern systems. It has integration into Android's Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms. It will gain more portability/integration over time.

Confidant: your secret keeper. https://lyft.github.io/confidant

Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. Discussion/announcements at stenographer@googlegroups.com

TCP/IP packet demultiplexer. Download from:

A network sniffer that logs all DNS server replies for use in a passive DNS setup

Kippo - SSH Honeypot

No description.

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Flutter Reverse Engineering Framework

Go server for two-man rule style file encryption and decryption.

Automated Red Team Infrastructure deployement using Docker

A modular vulnerability scanner with automatic report generation capabilities.

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

Legion is an open source, easy-to-use, super-extensible and semi-automated network penetration testing tool that aids in discovery, reconnaissance and exploitation of information systems.

Find exploit tool

No description.

Lonkero - Wraps around your attack surface. Professional-grade scanner for real penetration testing. Fast. Modular. Rust.

:closed_lock_with_key: Multiplatform command-line password manager

Safety guardrails for ai coding agents and human terminal commands

Apache Metron

Data Hacking Project

Tenzir is the data pipeline engine for security teams.

Free library for identifying and fingerprinting Android devices. MIT license, no restrictions on usage in production.

ClamAV antivirus scanning for Node.js — scan file uploads with a single function call. Zero dependencies. Typed Symbol verdicts. Local or Docker/clamd.

OpenSOC Apache Hadoop Code

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).

Functional Network Framework for Multi-Core Architectures

Fast HTTP enumerator

A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

A Linux packet crafting tool.

A low to medium interaction honeypot.

FireEye Publicly Shared Indicators of Compromise (IOCs)

🔥 A fully open source audit logs service and embeddable UI easily deployed to your own Kubernetes cluster. Brought to you by replicated.com and boxyhq.com 🚀

A Vault CLI

Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust

Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.

Discover internet-wide misconfigurations while drinking coffee