security-automation

There are 633 repositories under security-automation topic.

  • future-architect/vuls

    Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

    Language:Go10.7k3285811.2k

  • wazuh/wazuh

    Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

    Language:C9.5k21216.1k1.5k
  • xonsh

    xonsh/xonsh

    :shell: Python-powered, cross-platform, Unix-gazing shell.

    Language:Python8.1k1022.6k625
  • Scanners-Box

    We5ter/Scanners-Box

    A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

    8.1k403402.4k

  • securego/gosec

    Go security checker

    Language:Go7.5k89423590
  • monkey

    guardicore/monkey

    Infection Monkey - An open-source adversary emulation platform

    Language:Python6.5k2411.5k762
  • caldera

    mitre/caldera

    Automated Adversary Emulation Platform

    Language:Python5.3k1667181k

  • infobyte/faraday

    Open Source Vulnerability Management Platform

    Language:Python4.7k252425866

  • builtbybel/privatezilla

    👀👮🐢🔥Performs a privacy & security check of Windows 10

    Language:C#3.5k6759165

  • DefectDojo/django-DefectDojo

    DevSecOps, ASPM, Vulnerability Management. All on one platform.

    Language:HTML3.5k2082.7k1.5k

  • flipkart-incubator/Astra

    Automated Security Testing For REST API's

    Language:Python2.4k8686389
  • dependency-track

    DependencyTrack/dependency-track

    Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

    Language:Java2.4k691.8k521

  • ComplianceAsCode/content

    Security automation content in SCAP, Bash, Ansible, and other formats

    Language:Shell2.1k1242.9k671

  • Yamato-Security/hayabusa

    Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

    Language:Rust2k42598172

  • aress31/burpgpt

    A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.

    Language:Java1.9k3430213

  • hisxo/gitGraber

    gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

    Language:Python1.9k4425324
  • bearer

    Bearer/bearer

    Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

    Language:Go1.8k2032383
  • SubDomainizer

    nsonaniya2010/SubDomainizer

    A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

    Language:Python1.7k4229232
  • fixinventory

    someengineering/fixinventory

    Fix Inventory consolidates user, resource, and configuration data from your cloud environments into a unified, graph-based asset inventory.

    Language:Python1.6k1915381

  • danieldurnea/FBI-tools

    🕵️ OSINT Tools for gathering information and actions forensics 🕵️

    1.5k322229
  • w5

    w5teams/w5

    Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效

    Language:Python1.5k2949239

  • cisagov/ScubaGear

    Automation to assess the state of your M365 tenant against CISA's baselines

    Language:Open Policy Agent1.4k43807199

  • konstruktoid/hardening

    Hardening Ubuntu. Systemd edition.

    Language:Shell1.3k5481257
  • Shuffle

    Shuffle/Shuffle

    Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.

    Language:Shell1.3k35984307
  • Sooty

    TheresAFewConors/Sooty

    The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

    Language:Python1.3k6364203
  • pacbot

    tmobile/pacbot

    PacBot (Policy as Code Bot)

    Language:Java1.3k80197278
  • cfn_nag

    stelligent/cfn_nag

    Linting tool for CloudFormation templates

    Language:Ruby1.2k34363208

  • fkie-cad/FACT_core

    Firmware Analysis and Comparison Tool

    Language:Python1.2k33400222

  • intel/cve-bin-tool

    The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

    Language:Python1.1k271.3k442

  • dropbox/securitybot

    Distributed alerting for the masses!

    Language:Python9915812127
  • APTRS

    APTRS/APTRS

    Automated Penetration Testing Reporting System

    Language:Python779131687

  • flosell/trailscraper

    A command-line tool to get valuable information out of AWS CloudTrail

    Language:Python763134136
  • secureCodeBox

    secureCodeBox/secureCodeBox

    secureCodeBox (SCB) - continuous secure delivery out of the box

    Language:JavaScript73126525146

  • google/turbinia

    Automation and Scaling of Digital Forensics Tools

    Language:Python72236550163

  • aws-samples/aws-secure-environment-accelerator

    The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.

    Language:HTML71342287231

  • marcinguy/betterscan-ce

    Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)

    Language:Python709142885