Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for python security audit
python
x
security-audit
x
107 search results found
Prowler
⭐
9,547
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
Faraday
⭐
4,422
Open Source Vulnerability Management Platform
Xunfeng
⭐
2,946
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Github Dorks
⭐
2,546
Find leaked secrets via github search
W5
⭐
1,378
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
Inql
⭐
1,378
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
Ssh Mitm
⭐
1,176
SSH-MITM - ssh audits made simple
Vhostscan
⭐
1,114
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Sysreptor
⭐
979
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
Enum4linux Ng
⭐
896
A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
Pip Audit
⭐
882
Audits Python environments and dependency trees for known vulnerabilities
Habu
⭐
853
Hacking Toolkit
Cansina
⭐
852
Web Content Discovery Tool
Electriceye
⭐
794
ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks
Gourdscanv2
⭐
683
被动式漏洞扫描系统
Sqliscanner
⭐
640
Automatic SQL injection with Charles and sqlmap api
Packj
⭐
573
Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
Django Secure
⭐
479
This project was merged into Django 1.8, and is now unsupported and unmaintained as a third-party app.
Aura
⭐
468
Python source code auditing and static analysis on a large scale
Badkarma
⭐
408
network reconnaissance toolkit
Aws Cloudsaga
⭐
406
AWS CloudSaga - Simulate security events in AWS
Sippts
⭐
347
Set of tools to audit SIP based VoIP Systems
Sec Admin
⭐
329
分布式资产安全扫描核心管理系统(弱口令扫描,漏洞扫描)
Webapp Checklist
⭐
302
Technical details that a programmer of a web application should consider before making the site public.
Seo Audits Toolkit
⭐
284
SEO & Security Audit for Websites. Lighthouse & Security Headers crawler, Sitemap/Keywords/Images Extractor, Summarizer, etc ...
Wsltools
⭐
278
Web Scan Lazy Tools - Python Package
Codecat
⭐
264
CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules. Beta version.
Salt Scanner
⭐
255
Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration
Rspet
⭐
251
RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.
Iossecaudit
⭐
234
iOS Security Audit Toolit - A semi-automatic tool for iOS App security audit and iOS reverse engineering
G Scout
⭐
203
Google Cloud Platform Security Tool
Cloudmarker
⭐
191
Cloud security monitoring tool and framework
Kcare Uchecker
⭐
180
A simple tool to detect outdated shared libraries
Anteater
⭐
174
Anteater - CI/CD Gate Check Framework
Pyscan
⭐
172
python dependency vulnerability scanner, written in Rust.
Striptls
⭐
164
proxy poc implementation of STARTTLS stripping attacks
Hardentheworld
⭐
160
Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.
Nebulousad
⭐
152
NebulousAD automated credential auditing tool.
Logesp
⭐
137
Open Source SIEM (Security Information and Event Management system).
Gcp Audit
⭐
134
A tool for auditing security properties of GCP projects.
Poro
⭐
132
Scan publicly accessible assets on your AWS cloud environment
Zap Cli
⭐
130
A simple tool for interacting with OWASP ZAP from the commandline.
Humble
⭐
128
A humble, and fast!, security-oriented HTTP headers analyzer.
Replica
⭐
121
Ghidra Analysis Enhancer 🐉
Pyrcrack
⭐
109
Python Aircrack-ng bindings
Risu
⭐
99
Automation Troubleshooting Framework to validate and report configuration, software installed, etc with bash, python, and your language of choice.
Gh Dork
⭐
95
Github dorking tool
Pypaseto
⭐
87
PASETO for Python
Iotshark
⭐
82
IotShark - Monitoring and Analyzing IoT Traffic
Mailripv2
⭐
80
Improved SMTP Checker / SMTP Cracker with proxy-support, inbox test and many more features.
Security Reviews
⭐
79
A community collection of security reviews of open source software components.
Secator
⭐
77
Secator - the pentester's swiss knife
Gcp Firewall Enforcer
⭐
76
A toolbox to enforce firewall rules across multiple GCP projects.
Cybersecurity
⭐
73
Welcome Cybersecurity's World. An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources in Cybersecurity.
Btle Sniffer
⭐
70
Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them
Pci
⭐
64
Packet communication investigator
Industrial Security Auditing Framework
⭐
52
ISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-aud
Dimorf
⭐
49
Dimorf is a ransomware using 256-bit AES with a self-destructing, randomly generated key for Linux OS´s
Masamune
⭐
49
A smart contract security search utility
Pytos
⭐
49
A Python SDK for Tufin Orchestration Suite
Assimilation Official
⭐
49
This is the official main repository for the Assimilation project
Dummy
⭐
45
Generator of static files for testing file upload. It can generate the png file of any number of bytes!
Multiscanner
⭐
40
Security Tool which scans a target using OpenVAS, Zap, and Nexpose. And consolidates the scan result.
Dc Sonar
⭐
39
Analyzing AD domains for security risks related to user accounts
Passmute
⭐
39
PassMute - A multi featured Password Transmutation/Mutator Tool
Dependency Check Py
⭐
37
🔐 Shim to easily install OWASP dependency-check-cli into Python projects
Tell Me Your Secrets
⭐
35
Find secrets on any machine from over 120 Different Signatures.
Ransomware Json Dataset
⭐
34
Compiles a json dataset using public sources that contains properties to aid in the detection and mitigation of over 1000 variants of ransomware.
Whispers
⭐
34
Identify hardcoded secrets in static structured text (version 2)
Pentesting Multitool
⭐
34
Different utility scripts for pentesting and hacking.
Pnwgen
⭐
30
A very flexible phone number wordlist generator
Itwsv
⭐
28
ITWSV- Integrated Tool for Web Security Vulnerability
Pip Rating
⭐
27
Check the health of your project's requirements and get a score for each dependency.
Secusphere
⭐
26
Efficient DevSecOps
Spydan
⭐
26
A web spider for shodan.io without using the Developer API.
Cisco Ios Audit
⭐
24
Python script that parses a Cisco IOS configuration file and generates a report to efficiently perform an IT Security Audit
Pyvas
⭐
24
OpenVAS Management Protocol Client for Python
Agent
⭐
23
Simple security audit for linux systems
Cryptolyzer
⭐
22
CryptoLyzer is a fast, flexible and comprehensive server cryptographic protocol (TLS, SSL, SSH, DNSSEC) and related setting (HTTP headers, DNS records) analyzer and fingerprint (JA3, HASSH tag) generator with Python API and CLI. (read-only clone of the original GitLab project)
Labsecurity
⭐
21
Labsecurity is a tool that bundles ethical hacking python scripts into a single tool with cli interface.
Sec Scannode
⭐
20
SEC分布式资产扫描系统
Smbscan
⭐
19
SMBScan is a tool to enumerate file shares on an internal network.
S3 Permission Checker
⭐
18
Check read, write permissions on S3 buckets in your account
Nerfball
⭐
18
Want to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳
Zaproxy Automation
⭐
17
This is a collection of ZAProxy Automation Tools and scripts to automate security tests of WEB Applications and WEB Sites
Mailripv3
⭐
16
SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Blowhole
⭐
14
Docker auditing and enumeration script.
Clair Singularity
⭐
14
Scan Singularity container images using a Clair server
Requests Jwt
⭐
14
Use JSON Web Tokens (JWT) for authentication with Requests
Gcp Iam Collector
⭐
14
Python script for collecting and visualising Google Cloud Platform IAM permissions
Sanejs
⭐
14
Use CDNJS as a source to build hashes of known JS/CSS/IMG/... content used all over the internet
Awsbigbrother
⭐
13
AWS Big Brother is a tool to analyse IAM users
Haram Tool Hacker Penetration Master
⭐
13
Haram Tool is Software Web Penetration Testing Tool.
Cybersecurity Ethical Hacking
⭐
12
An ongoing collection of awesome ethical hacking tools, software, libraries, learning tutorials, frameworks, academic and practical resources
Suid_scan
⭐
11
Simple script to help you check for files with execute-as bits set.
Csplogger
⭐
10
A CSP endpoint to aggregate, correlate and analyze report-uri violations across your infrastructure
Codeargos
⭐
10
A python module for red teams to support the continuous recon of JavaScript files and HTML script blocks in an active web application.
Remediations Gendbuntu
⭐
9
The main goal of this project is the configuration and control of various types of devices operating in a corporate environment. Information security is the main direction of development. Roles have default settings that can be dynamically overridden using "inventories" folder rules based on subnet, host group (organizational unit or branch), OS.
Pre Commit Hooks
⭐
8
Hooks for Use With the pre-commit Framework: https://pre-commit.com
Google Cloud Security
⭐
7
Functions to Alert and Remediate Google Cloud Platform Security Findings
Related Searches
Python Django (28,897)
Python Machine Learning (20,195)
Python Flask (17,643)
Python Dataset (14,792)
Python Docker (14,113)
Python Tensorflow (13,736)
Python Command Line (13,152)
Python Deep Learning (13,092)
Python Jupyter Notebook (12,976)
Python Network (11,495)
1-100 of 107 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.