Awesome Security

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

🤖 The Modern Port Scanner 🤖

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Infection Monkey - An open-source adversary emulation platform

Open Source Cloud Native Application Protection Platform (CNAPP)

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

:star: :star: Distributed tcpdump for cloud native environments :star: :star:

Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

A modular vulnerability scanner with automatic report generation capabilities.

Find exploit tool

Lonkero - Wraps around your attack surface. Professional-grade scanner for real penetration testing. Fast. Modular. Rust.

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Secure shell history commands by finding sensitive data

Open Source SIEM (Security Information and Event Management system).

:shower: Sanitising your documents, one threat at a time. — Content Disarm & Reconstruction Software

A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation

Android Malware Behavior Deleter

🕵️‍♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️

A tool to extract local data storage of an Android application in one click.