nbuuck's Stars
kolide/launcher
Osquery launcher, autoupdater, and packager
security-code-scan/security-code-scan
Vulnerability Patterns Detector for C# and VB.NET
CISOfy/lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
dotnet/roslyn-analyzers
sleepynate/fp-from-none-to-infinity
Markup and notes from my Functional Programming from None to Infinity workshop
paragonie/paseto
Platform-Agnostic Security Tokens
SwiftOnSecurity/sysmon-config
Sysmon configuration file template with default high-quality event tracing
microsoft/adfsWebCustomization
A repository of useful Web Customizations for Active Directory Federation Services
blabla1337/skf-flask
Security Knowledge Framework (SKF) Python Flask / Angular project
OWASP/ASVS
Application Security Verification Standard
nabla-c0d3/sslyze
Fast and powerful SSL/TLS scanning library.
google/macops
Utilities, tools, and scripts for managing and tracking a fleet of Macintoshes in a corporate environment
Icinga/icingaweb2
A lightweight and extensible web interface to keep an eye on your environment. Analyse problems and act on them.
Disassembler0/Win10-Initial-Setup-Script
PowerShell script for automation of routine tasks done after fresh installations of Windows 10 / Server 2016 / Server 2019
PowerShell/DscResources
Central repository for PowerShell Desired State Configuration (DSC) resources.
WebGoat/WebGoat
WebGoat is a deliberately insecure application
Security-Onion-Solutions/security-onion
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
sonatype-nexus-community/audit.net
Identify known vulnerabilities in .net nuget dependencies
pumasecurity/puma-scan
Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.
dotnet-security-guard/roslyn-security-guard
Roslyn analyzers that aim to help security audit on .NET applications.
OWASP/owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
microsoft/DevSkim
DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.
xoreaxeaxeax/sandsifter
The x86 processor fuzzer
avarisclari/MechCommander2
MechCommander 2 Source
narzoul/DDrawCompat
DirectDraw and Direct3D 1-7 compatibility, performance and visual enhancements for Windows Vista, 7, 8, 10 and 11
dnSpy/dnSpy
.NET debugger and assembly editor
microsoft/DiagManager
Pssdiag/Sqldiag Manager is a graphic interface that provides customization capabilities to collect data for SQL Server using sqldiag collector engine. The data collected can be used by SQL Nexus tool which help you troubleshoot SQL Server performance problems. This is the same tool Microsoft SQL Server support engineers use to for data collection to troubleshoot customer's performance problems.
microsoft/SqlNexus
SQL Nexus is a tool that helps you identify the root cause of SQL Server performance issues. It loads and analyzes performance data collected by SQL LogScout, SQLDiag or PSSDiag. It can dramatically reduce the amount of time you spend manually analyzing data.
hillbrad/U2FReviews
Reviews of U2F devices
mozilla/cipherscan
A very simple way to find out which SSL ciphersuites are supported by a target.