Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for golang security tools
golang
x
security-tools
x
96 search results found
Trivy
⭐
20,160
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Gitleaks
⭐
17,740
Protect and discover secrets using Gitleaks 🔑
Vuls
⭐
10,487
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Sliver
⭐
8,415
Adversary Emulation Framework
Gosec
⭐
7,276
Go security checker
Traitor
⭐
6,329
⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
Certificates
⭐
5,887
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Osv Scanner
⭐
5,632
Vulnerability scanner written in Go which uses the data provided by https://osv.dev
Scan4all
⭐
5,343
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Osmedeus
⭐
5,250
A Workflow Engine for Offensive Security
Syzkaller
⭐
5,008
syzkaller is an unsupervised coverage-guided kernel fuzzer
Spicedb
⭐
4,131
Open Source, Google Zanzibar-inspired permissions database to enable fine-grained access control for customer applications
Secretscanner
⭐
2,900
🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓
Dockle
⭐
2,534
Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
Stowaway
⭐
2,195
👻Stowaway -- Multi-hop Proxy Tool for pentesters
Gokart
⭐
2,141
A static analysis tool for securing Go code
Kics
⭐
2,055
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Picocrypt
⭐
2,043
A very small, very simple, yet very secure encryption tool.
Jaeles
⭐
1,951
The Swiss Army knife for automated Web Application Testing
Dismap
⭐
1,840
Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点
Awesome Golang Security
⭐
1,768
Awesome Golang Security resources 🕶🔐
Hacking With Golang
⭐
1,693
Golang安全资源合集
Bearer
⭐
1,554
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Ksubdomain
⭐
1,457
无状态子域名爆破工具
Ghorg
⭐
1,409
Quickly clone an entire org/users repositories into one directory - Supports GitHub, GitLab, Bitbucket, and more 🥚
Gotestwaf
⭐
1,354
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
Pocassist
⭐
1,341
傻瓜式漏洞PoC测试框架
Cariddi
⭐
1,228
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
Goblin
⭐
1,182
一款适用于红蓝对抗中的仿真钓鱼系统
Metabigor
⭐
1,087
OSINT tools and more but without API ke
Git Hound
⭐
1,076
Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.
Flowmeter
⭐
1,058
⭐ ⭐ Use ML to classify flows and packets as benign or malicious. ⭐ ⭐
Gogo
⭐
961
面向红队的, 高度可控可拓展的自动化引擎
Deimosc2
⭐
926
DeimosC2 is a Golang command and control framework for post-exploitation.
Trivy Operator
⭐
886
Kubernetes-native security toolkit
Golang Tls
⭐
788
Simple Golang HTTPS/TLS Examples
Web Cache Vulnerability Scanner
⭐
756
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
Kube Scan
⭐
734
kube-scan: Octarine k8s cluster risk assessment tool
Salus
⭐
714
Security scanner coordinator
Scilla
⭐
682
Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
Chain Bench
⭐
674
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
Apkhunt
⭐
580
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.
Huskyci
⭐
562
Performing security tests inside your CI
Kubehound
⭐
552
Kubernetes Attack Graph
Kubesploit
⭐
501
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
Edrhunt
⭐
475
Scan installed EDRs and AVs on Windows
Github Subdomains
⭐
426
Find subdomains on GitHub.
Bomber
⭐
406
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
Local Log4j Vuln Scanner
⭐
386
Simple local scanner for vulnerable log4j instances
Aws Sso Cli
⭐
341
A powerful tool for using AWS Identity Center for the CLI and web console.
Apk Medit
⭐
337
memory search and patch tool on debuggable apk without root & ndk
Slsa Github Generator
⭐
335
Language-agnostic SLSA provenance generation for Github Actions
Authz0
⭐
331
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
Kube Psp Advisor
⭐
317
Help building an adaptive and fine-grained pod security policy
Yaklang
⭐
308
A programming language exclusively designed for cybersecurity
Rescope
⭐
298
A scope generation tool for Burp Suite & ZAP
Slack
⭐
295
一款Go Wails实现的GUI工具,功能涵盖网站扫描、端口扫描、企业信息收集、子域名暴破、空间引擎搜索、CD
Second Order
⭐
295
Second-order subdomain takeover scanner
Lit Bb Hack Tools
⭐
293
Little Bug Bounty & Hacking Tools⚔️
Dnsmonster
⭐
290
Passive DNS Capture and Monitoring Toolkit
Hijagger
⭐
273
Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration
Lazytrivy
⭐
258
Vulnerability scanning just got lazier
Jsubfinder
⭐
257
jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
W3a_soc
⭐
256
元豚科技 - 基于日志安全分析做切入,做最好用的「云原生安全运维工作台」
Secure Repo
⭐
253
Orchestrate GitHub Actions Security
Csprecon
⭐
248
Discover new target domains using Content Security Policy
Ja3transport
⭐
226
Impersonating JA3 signatures
Spray
⭐
213
Next Generation HTTP Dir/File Fuzz Tool
Mksub
⭐
204
Generate tens of thousands of subdomain combinations in a matter of seconds
Allero
⭐
199
By scanning CI/CD misconfigurations, Allero helps reduce production issues, harden your security posture and shift-left CI/CD from DevOps to developers.
Pryingdeep
⭐
196
Prying Deep - An OSINT tool to collect intelligence on the dark web.
Gotator
⭐
183
Gotator is a tool to generate DNS wordlists through permutations.
Pillager
⭐
178
Pillage filesystems for sensitive information with Go 🔍
Argo
⭐
177
Argo is an automated general crawler for automatically obtaining website URLs . Argo 是一个自动化扫描器爬虫 用于自动化获取网站的URL 基于go-rod实现了静态和动态结合的方式来实现
Nosqli
⭐
173
NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
Iamzero
⭐
168
Identity & Access Management simplified and secure.
Agebox
⭐
159
Age based repository file encryption gitops tool
Gonids
⭐
151
gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/
Favirecon
⭐
149
Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.
Github Endpoints
⭐
141
Find endpoints on GitHub.
Squealer
⭐
140
Telling tales on you for leaking secrets!
Galah
⭐
138
Galah: an LLM-powered web honeypot using the OpenAI API.
Go Dnscollector
⭐
136
Ingesting, pipelining, and enhancing your DNS logs with usage indicators, security analysis, and additional metadata.
Airmaster
⭐
131
Use ExpiredDomains.net and BlueCoat to find useful domains for red team.
Git Alerts
⭐
128
Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
Bbr
⭐
124
An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
Turbo Scanner
⭐
120
A port scanner and service detection tool that uses 1000 goroutines at once to scan any hosts's ip or fqdn with the sole purpose of testing your own network to ensure there are no malicious services running.
Find Gh Poc
⭐
117
Find CVE PoCs on GitHub
Cloud Discovery
⭐
113
Cloud Discovery provides a point in time enumeration of all the cloud native platform services
Sbomqs
⭐
109
SBOM quality score - Quality metrics for your sboms
Go Hash
⭐
103
Small utility to store secret information like passwords.
Aws Enumerator
⭐
99
The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testing. The tool is intended to speed up the process of Cloud review in case the security researcher compromised AWS Account Credentials.
Karn
⭐
93
Simplifying Seccomp enforcement in containerized or non-containerized apps
Certwatcher
⭐
92
CertWatcher is a tool for capture and tracking certificate transparency logs, using YAML templates based DSL.
Portforward
⭐
90
The port forwarding tool developed by Golang solves the problem that the internal and external networks cannot communicate in certain scenarios
Troll A
⭐
89
Drill into WARC web archives
Zed
⭐
86
Official command-line tool for managing SpiceDB
Passdetective
⭐
85
PassDetective is a command-line tool that scans shell command history to detect mistakenly written passwords, API keys, and secrets. Using regular expressions, it helps prevent accidental exposure of sensitive information in your command history.
Seeyon Exploit
⭐
84
致远OA漏洞检测
Super
⭐
82
SPR is a secure programmable router.
Related Searches
Golang Command Line (8,308)
Golang Docker (7,059)
Golang Kubernetes (6,482)
Golang Server (4,285)
Golang Http (4,273)
Javascript Golang (3,372)
Golang Database (2,758)
Golang Json (2,652)
Golang Proxy (2,570)
Python Golang (2,332)
1-96 of 96 search results
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.