Awesome Open Source

Programming Languages

Search results for golang security tools

security-tools x

112 search results found

Trivy ⭐ 20,160

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Gitleaks ⭐ 15,221

Protect and discover secrets using Gitleaks 🔑

Vuls ⭐ 10,487

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Gosec ⭐ 7,276

Go security checker

Sliver ⭐ 7,152

Adversary Emulation Framework

Traitor ⭐ 6,329

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

Certificates ⭐ 5,887

🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

Osv Scanner ⭐ 5,632

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

Osmedeus ⭐ 5,076

A Workflow Engine for Offensive Security

Syzkaller ⭐ 5,008

syzkaller is an unsupervised coverage-guided kernel fuzzer

Scan4all ⭐ 4,909

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

Spicedb ⭐ 4,131

Open Source, Google Zanzibar-inspired permissions database to enable fine-grained access control for customer applications

🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.

Secretscanner ⭐ 2,900

🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓

Dockle ⭐ 2,534

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

Containerssh ⭐ 2,504

ContainerSSH: Launch containers on demand

Torbot ⭐ 2,338

Dark Web OSINT Tool

Stowaway ⭐ 2,195

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Gokart ⭐ 2,141

A static analysis tool for securing Go code

Picocrypt ⭐ 2,043

A very small, very simple, yet very secure encryption tool.

Jaeles ⭐ 1,951

The Swiss Army knife for automated Web Application Testing

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Packetstreamer ⭐ 1,851

⭐ ⭐ Distributed tcpdump for cloud native environments ⭐ ⭐

Dismap ⭐ 1,840

Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点

Awesome Golang Security ⭐ 1,768

Awesome Golang Security resources 🕶🔐

Hacking With Golang ⭐ 1,693

Golang安全资源合集

Bearer ⭐ 1,554

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Ksubdomain ⭐ 1,457

无状态子域名爆破工具

Ladongo ⭐ 1,423

Ladon for Kali 全平台开源内网渗透扫描器,Windows/Linux/Mac/路由器内网渗透，使用它可轻松一键批量探

Ghorg ⭐ 1,409

Quickly clone an entire org/users repositories into one directory - Supports GitHub, GitLab, Bitbucket, and more 🥚

Gotestwaf ⭐ 1,354

An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

Pocassist ⭐ 1,341

傻瓜式漏洞PoC测试框架

Cariddi ⭐ 1,228

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Goblin ⭐ 1,182

一款适用于红蓝对抗中的仿真钓鱼系统

Metabigor ⭐ 1,087

OSINT tools and more but without API ke

Git Hound ⭐ 1,076

Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.

Flowmeter ⭐ 1,058

⭐ ⭐ Use ML to classify flows and packets as benign or malicious. ⭐ ⭐

面向红队的, 高度可控可拓展的自动化引擎

Deimosc2 ⭐ 926

DeimosC2 is a Golang command and control framework for post-exploitation.

Trivy Operator ⭐ 886

Kubernetes-native security toolkit

Golang Tls ⭐ 788

Simple Golang HTTPS/TLS Examples

Web Cache Vulnerability Scanner ⭐ 756

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

Kube Scan ⭐ 734

kube-scan: Octarine k8s cluster risk assessment tool

Security scanner coordinator

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

Chain Bench ⭐ 674

An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.

Reverse Ssh ⭐ 672

Statically-linked ssh server with reverse shell functionality for CTFs and such

Saferwall ⭐ 632

☁️ Collaborative Malware Analysis Platform at Scale

Apkhunt ⭐ 580

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.

Huskyci ⭐ 557

Performing security tests inside your CI

Kubehound ⭐ 552

Kubernetes Attack Graph

Api Firewall ⭐ 515

Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.

Kubesploit ⭐ 501

Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

Edrhunt ⭐ 475

Scan installed EDRs and AVs on Windows

Fwanalyzer ⭐ 475

a tool to analyze filesystem images for security

Github Subdomains ⭐ 426

Find subdomains on GitHub.

Scans Software Bill of Materials (SBOMs) for security vulnerabilities

Local Log4j Vuln Scanner ⭐ 386

Simple local scanner for vulnerable log4j instances

Firefly ⭐ 352

Black box fuzzer for web applications

Aws Sso Cli ⭐ 341

A powerful tool for using AWS Identity Center for the CLI and web console.

Apk Medit ⭐ 337

memory search and patch tool on debuggable apk without root & ndk

Slsa Github Generator ⭐ 335

Language-agnostic SLSA provenance generation for Github Actions

🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.

Kube Psp Advisor ⭐ 317

Help building an adaptive and fine-grained pod security policy

Yaklang ⭐ 308

A programming language exclusively designed for cybersecurity

Rescope ⭐ 298

A scope generation tool for Burp Suite & ZAP

一款Go Wails实现的GUI工具，功能涵盖网站扫描、端口扫描、企业信息收集、子域名暴破、空间引擎搜索、CD

Second Order ⭐ 295

Second-order subdomain takeover scanner

Lit Bb Hack Tools ⭐ 293

Little Bug Bounty & Hacking Tools⚔️

Dnsmonster ⭐ 290

Passive DNS Capture and Monitoring Toolkit

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover support

Hijagger ⭐ 273

Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration

Lazytrivy ⭐ 258

Vulnerability scanning just got lazier

Jsubfinder ⭐ 257

jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).

W3a_soc ⭐ 256

元豚科技 - 基于日志安全分析做切入，做最好用的「云原生安全运维工作台」

Insider ⭐ 255

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

Csprecon ⭐ 248

Discover new target domains using Content Security Policy

Ja3transport ⭐ 226

Impersonating JA3 signatures

Secure Repo ⭐ 223

Orchestrate GitHub Actions Security

去中心化远程控制工具（Decentralized Remote Administration Tool），通过ENS实现了配置文件分发的去中心化，通过Telegram实现了服务端的去中心化

Next Generation HTTP Dir/File Fuzz Tool

Teler Waf ⭐ 209

teler-waf is a Go HTTP middleware that provides teler IDS functionality.

Generate tens of thousands of subdomain combinations in a matter of seconds

By scanning CI/CD misconfigurations, Allero helps reduce production issues, harden your security posture and shift-left CI/CD from DevOps to developers.

Pryingdeep ⭐ 196

Prying Deep - An OSINT tool to collect intelligence on the dark web.

Dirsearch ⭐ 195

A Go implementation of dirsearch.

Gotator ⭐ 183

Gotator is a tool to generate DNS wordlists through permutations.

Pillager ⭐ 178

Pillage filesystems for sensitive information with Go 🔍

Argo is an automated general crawler for automatically obtaining website URLs . Argo 是一个自动化扫描器爬虫用于自动化获取网站的URL 基于go-rod实现了静态和动态结合的方式来实现

NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.

Iamzero ⭐ 168

Identity & Access Management simplified and secure.

Nmap Formatter ⭐ 165

A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot) or sqlite. Simply put it's nmap converter.

Ipa Medit ⭐ 163

Memory modification tool for re-signed ipa supports iOS apps running on iPhone and Apple Silicon Mac without jailbreaking.

Age based repository file encryption gitops tool

gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/

Favirecon ⭐ 149

Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.

Github Endpoints ⭐ 141

Find endpoints on GitHub.

Squealer ⭐ 140

Telling tales on you for leaking secrets!

Galah: an LLM-powered web honeypot using the OpenAI API.

Go Dnscollector ⭐ 136

Ingesting, pipelining, and enhancing your DNS logs with usage indicators, security analysis, and additional metadata.

Related Searches

Golang Command Line (8,308)

Golang Docker (7,059)

Golang Kubernetes (6,482)

Golang Server (4,285)

Golang Http (4,273)

Javascript Golang (3,372)

Golang Database (2,758)

Golang Json (2,652)

Golang Proxy (2,570)

Python Golang (2,332)

1-100 of 112 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.