Skip to content
#

security-audit

Star

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

Here are 520 public repositories matching this topic...

Language: All
Filter by language
All 520 Python 160 Shell 47 JavaScript 33 Go 23 PHP 20 Ruby 20 HTML 18 Java 18 PowerShell 16 TypeScript 15
Sort: Best match
Sort options
Best match Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

future-architect / vuls

Star

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

go linux golang freebsd security security-audit administrator cybersecurity security-vulnerability vulnerabilities security-hardening vulnerability-detection vulnerability-management vulnerability-scanners security-scanner vulnerability-assessment vuls security-automation security-tools vulnerability-scanner
  • Updated Apr 23, 2021
  • Go

CISOfy / lynis

Star

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

linux shell auditing devops unix security-audit pci-dss compliance hardening security-vulnerability security-hardening devops-tools hipaa vulnerability-detection vulnerability-scanners security-scanner vulnerability-assessment gdpr security-tools system-hardening
  • Updated Apr 23, 2021
  • Shell

toniblyx / prowler

Star

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf and more than 100 additional checks that help on GDPR, HIPAA and other security requirements.

aws security cis security-audit cloud aws-cli assessment forensics compliance hardening security-hardening hipaa cloudtrail gdpr security-tools cis-benchmark aws-auditing prowler well-architected
  • Updated Apr 21, 2021
  • Shell

codingo / Reconnoitre

Star

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

security security-audit scanner snmp hacking range enumeration nmap penetration-testing scanning kali-linux offensive-security virtual-hosts hacking-tool security-scanner security-tools oscp service-enumeration services-discovered discover-services
  • Updated Jul 6, 2020
  • Python
find-sec-bugs

find-sec-bugs / find-sec-bugs

Star
Open

Detect usage of Apache BeanUtils as dangerous

h3xstream
h3xstream commented Oct 5, 2020

Description

BeanUtils is a library that is doing automatic mapping to Java object.
It can cause arm when the attack controls part of the list of properties being sets. BeanUtils does not blacklist properties like class, classloader or other objects that are likely to load arbitrary classes and possibly run code.

Code

import org.apache.commons.beanutils.BeanUtils;

public
Read more
good first issue hacktoberfest
Find more good first issues

charles2gan / GDA-android-reversing-Tool

Star

GDA is a new fast and powerful decompiler in C++(working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.

security-audit decompiler malware-analysis mobile-security vulnerability-scanners privacy-protection
  • Updated Apr 8, 2021
  • Java
Wikipedia
Wikipedia