security-automation
There are 633 repositories under security-automation topic.
future-architect/vuls
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
wazuh/wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
xonsh/xonsh
:shell: Python-powered, cross-platform, Unix-gazing shell.
We5ter/Scanners-Box
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
securego/gosec
Go security checker
guardicore/monkey
Infection Monkey - An open-source adversary emulation platform
mitre/caldera
Automated Adversary Emulation Platform
infobyte/faraday
Open Source Vulnerability Management Platform
builtbybel/privatezilla
👀👮🐢🔥Performs a privacy & security check of Windows 10
DefectDojo/django-DefectDojo
DevSecOps, ASPM, Vulnerability Management. All on one platform.
flipkart-incubator/Astra
Automated Security Testing For REST API's
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
ComplianceAsCode/content
Security automation content in SCAP, Bash, Ansible, and other formats
Yamato-Security/hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
aress31/burpgpt
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type.
hisxo/gitGraber
gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Bearer/bearer
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
nsonaniya2010/SubDomainizer
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
someengineering/fixinventory
Fix Inventory consolidates user, resource, and configuration data from your cloud environments into a unified, graph-based asset inventory.
danieldurnea/FBI-tools
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
w5teams/w5
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
cisagov/ScubaGear
Automation to assess the state of your M365 tenant against CISA's baselines
konstruktoid/hardening
Hardening Ubuntu. Systemd edition.
Shuffle/Shuffle
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
TheresAFewConors/Sooty
The SOC Analysts all-in-one CLI tool to automate and speed up workflow.
tmobile/pacbot
PacBot (Policy as Code Bot)
stelligent/cfn_nag
Linting tool for CloudFormation templates
fkie-cad/FACT_core
Firmware Analysis and Comparison Tool
intel/cve-bin-tool
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
dropbox/securitybot
Distributed alerting for the masses!
APTRS/APTRS
Automated Penetration Testing Reporting System
flosell/trailscraper
A command-line tool to get valuable information out of AWS CloudTrail
secureCodeBox/secureCodeBox
secureCodeBox (SCB) - continuous secure delivery out of the box
google/turbinia
Automation and Scaling of Digital Forensics Tools
aws-samples/aws-secure-environment-accelerator
The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.
marcinguy/betterscan-ce
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)