security-analysis

There are 124 repositories under security-analysis topic.

  • vimeo/psalm

    A PHP static analysis tool for finding errors and security vulnerabilities in PHP applications

    Language:PHP5.8k577.9k683
  • mythril

    ConsenSysDiligence/mythril

    Mythril is a symbolic-execution-based securty analysis tool for EVM bytecode. It detects security vulnerabilities in smart contracts built for Ethereum and other EVM-compatible blockchains.

    Language:Python4.1k80857795

  • ac-pm/Inspeckage

    Android Package Inspector - dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)

    Language:Java2.9k111135522

  • satan1a/TheRoadOfSO

    学习安全运营的记录 | The knowledge base of security operation

    Language:HTML85991176
  • octopus

    FuzzingLabs/octopus

    Security Analysis tool for WebAssembly module (wasm) and Blockchain Smart Contracts (BTC/ETH/NEO/EOS)

    Language:Python488171587

  • TheAuditorTool/Auditor

    Antidote to VibeCoding

    Language:Python3846843

  • Ky0toFu/Mirror-Flowers

    Mirror Flowers 是一个开箱即用的代码安全审计工具,集成本地静态扫描(行级污点追踪 + AST)与 AI 验证,帮助你快速发现并定位高风险问题,并给出修复建议。

    Language:Python28642450

  • dogoncouch/LogESP

    Open Source SIEM (Security Information and Event Management system).

    Language:Python220141269

  • Or3stis/apparatus

    A graphical security analysis tool for IoT networks

    Language:JavaScript200242575
  • mythx-cli

    ConsenSysDiligence/mythx-cli

    A command line interface for the MythX smart contract security analysis API

    Language:Python9222830

  • ezztahoun/attack_flow_detector

    Find relevant incidents, logs, events, and alerts to all of your incidents. [Attack Flows, Attack Chains, & Root Cause Discovery - NO LLMs, NO Queries, Just Explainable Machine Learning] >> Use it for free here: https://app.cypienta.io

    Language:Python6558

  • AsaiKen/phpscan

    PHPSCAN: Security analysis tool for PHP

    Language:PHP64205

  • dogoncouch/siemstress

    Very basic CLI SIEM (Security Information and Event Management system).

    Language:Python41318

  • EPTLLC/brs-xss

    MIT license BRS-XSS is a modular Python CLI scanner for XSS vulnerabilities. Features context-aware payloads, WAF evasion, DOM analysis via Playwright, ML-based risk scoring, and export in HTML/JSON/SARIF. Designed for integration with Brabus Recon Suite (BRS).

    Language:Python292

  • 1140251/Ethsential

    EthSential is a security analysis framework for Ethereum smart contracts. It bundles other tools to find vulnerabilities in smart contracts code.

    Language:Python25301

  • RInvestments/sun-dance

    Crawling, Parsing, Mongo Insertion of financial data for value investing

    Language:Python22216

  • aquasecurity/trivy-pipe

    Bitbucket Pipe for running Trivy in a Pipeline

    Language:Shell20269

  • apurvsinghgautam/Crawl_Analyze_Top1_Million

    A research project to crawl and analyze Top 1 million domains

    Language:Python17207

  • redhat-actions/crda

    Scan your project's dependencies with Code Ready Dependency Analytics

    Language:TypeScript1653411

  • momosecurity/oxpecker

    oxpecker是一款用于从IDE提取开发项目仓库地址、当前分支、三方组件等信息用于安全分析的JetBrains家族IDE插件。

    Language:Java11106
  • dr_source

    thesp0nge/dr_source

    DRSource is an extensible, multi-language static analysis tool designed to detect vulnerabilities in source code. It uses a pluggable architecture to combine multiple detection techniques—from simple regex matching to advanced AST-based taint analysis—all driven by a central, user-configurable knowledge base.

    Language:Python11102

  • elliotsecops/Packet-Capture

    This script is designed to analyze network traffic captured in a .pcap file using the pyshark library. // Este script está diseñado para analizar el tráfico de red capturado en un archivo .pcap utilizando la librería pyshark.

    Language:Python10111

  • george-mellow/spotter-sast

    A comprehensive Model Context Protocol (MCP) server providing enterprise-grade Static Application Security Testing (SAST) with advanced compliance verification, multi-tenant management, AI-powered analysis, and automated remediation workflows.

    Language:JavaScript10000

  • TypeError/vuln-data-science

    Advanced vulnerability management and analysis through data science techniques

    Language:Jupyter Notebook9203

  • Armaan29-09-2005/AI-OSINT-Security-Analyzer

    AI OSINT Security Analyzer is an intelligent platform that leverages AI to perform autonomous investigations across various intelligence sources. With features like multi-source integration and real-time threat intelligence, it ensures comprehensive security assessments. 🛡️🔍

    Language:Python81

  • elliotsecops/Docker-Security-Scanner

    Minimalist yet powerful Docker security scanner implemented in Go, designed to help users identify common security issues in their running containers. The scanner checks for containers running as the root user, exposed ports, and provides a simplified check for missing security updates.

    Language:Go8100

  • elliotsecops/Network-Auditor

    Script en Python diseñado para auditar e informar de las configuraciones de red del sistema en sistemas Linux. // Python script designed to audit and report system network configurations on Linux systems.

    Language:Python8103

  • farazulhoda/network-traffic-analysis

    The Network Traffic Analyzer is a Python script designed for capturing and analyzing network traffic, focusing primarily on DNS traffic. This tool provides users with the capability to monitor network activity in real-time and extract relevant information from captured packets.

    Language:HTML7205

  • ph1nx/Image-encryption-using-3D-Logistic-Map-and-Improved-Chirikov-Map

    A novel image encryption algorithm implementing 3D Logistic Map and Improved Chirikov Map for secure and robust image encryption. Features enhanced security through chaotic mapping, high key sensitivity, and resistance to cryptographic attacks. With proven effectiveness against brute force and statistical attacks.

    Language:MATLAB7111

  • sereneblue/frida-omni

    A minimal web app to analyze Android applications with Frida

    Language:Python7102

  • arec1b0/quantum_cryptographic_toolkit

    The Quantum Cryptographic Toolkit (QCT) is a comprehensive framework designed to facilitate the development, testing, and deployment of quantum-resistant cryptographic algorithms.

    Language:Rust6100

  • elliotsecops/Network-Traffic-Anomaly-Detector

    a network traffic anomaly detector that captures and analyzes network packets to identify anomalous behavior. It uses machine learning techniques to detect deviations from normal traffic patterns // un detector de anomalías en el tráfico de red que captura y analiza paquetes de red para identificar comportamientos anómalos.

    Language:Python6102
  • Cybersecurity-Journey-TryHackMe

    RosanaFSS/Cybersecurity-Journey-TryHackMe

    Cybersecurity Journey - TryHackMe

    6102

  • tsikerdekis/overnight-hercules-network-security

    Overnight Hercules for Network Security: Become a Security Analyst book

    6101

  • elliotsecops/IoTSecurityTool

    Network scanning tool designed to identify IoT devices and detect vulnerabilities in them. This tool uses Nmap to scan the network and detect devices, and then runs NSE (Nmap Scripting Engine) scripts to identify known vulnerabilities.

    Language:Python5100

  • SecurityLab-UCD/ai-agent-security

    [RAIE'25] This repository contains source code for the demos and attacks we present in our paper `Security of AI Agents`.

    Language:Python5002