Awesome Open Source

Programming Languages

Search results for python security audit

security-audit x

107 search results found

Prowler ⭐ 9,547

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

Faraday ⭐ 4,422

Open Source Vulnerability Management Platform

Xunfeng ⭐ 2,946

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Github Dorks ⭐ 2,546

Find leaked secrets via github search

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

Ssh Mitm ⭐ 1,176

SSH-MITM - ssh audits made simple

Vhostscan ⭐ 1,114

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Sysreptor ⭐ 979

Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.

Enum4linux Ng ⭐ 896

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Pip Audit ⭐ 882

Audits Python environments and dependency trees for known vulnerabilities

Hacking Toolkit

Cansina ⭐ 852

Web Content Discovery Tool

Electriceye ⭐ 794

ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP & SaaS environments with controls mapped to over 20 industry, regulatory, and best practice controls frameworks

Gourdscanv2 ⭐ 683

被动式漏洞扫描系统

Sqliscanner ⭐ 640

Automatic SQL injection with Charles and sqlmap api

Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

Django Secure ⭐ 479

This project was merged into Django 1.8, and is now unsupported and unmaintained as a third-party app.

Python source code auditing and static analysis on a large scale

Badkarma ⭐ 408

network reconnaissance toolkit

Aws Cloudsaga ⭐ 406

AWS CloudSaga - Simulate security events in AWS

Set of tools to audit SIP based VoIP Systems

Sec Admin ⭐ 329

分布式资产安全扫描核心管理系统(弱口令扫描，漏洞扫描)

Webapp Checklist ⭐ 302

Technical details that a programmer of a web application should consider before making the site public.

Seo Audits Toolkit ⭐ 284

SEO & Security Audit for Websites. Lighthouse & Security Headers crawler, Sitemap/Keywords/Images Extractor, Summarizer, etc ...

Wsltools ⭐ 278

Web Scan Lazy Tools - Python Package

Codecat ⭐ 264

CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules. Beta version.

Salt Scanner ⭐ 255

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

Iossecaudit ⭐ 234

iOS Security Audit Toolit - A semi-automatic tool for iOS App security audit and iOS reverse engineering

G Scout ⭐ 203

Google Cloud Platform Security Tool

Cloudmarker ⭐ 191

Cloud security monitoring tool and framework

Kcare Uchecker ⭐ 180

A simple tool to detect outdated shared libraries

Anteater ⭐ 174

Anteater - CI/CD Gate Check Framework

python dependency vulnerability scanner, written in Rust.

Striptls ⭐ 164

proxy poc implementation of STARTTLS stripping attacks

Hardentheworld ⭐ 160

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

Nebulousad ⭐ 152

NebulousAD automated credential auditing tool.

Open Source SIEM (Security Information and Event Management system).

Gcp Audit ⭐ 134

A tool for auditing security properties of GCP projects.

Scan publicly accessible assets on your AWS cloud environment

Zap Cli ⭐ 130

A simple tool for interacting with OWASP ZAP from the commandline.

A humble, and fast!, security-oriented HTTP headers analyzer.

Replica ⭐ 121

Ghidra Analysis Enhancer 🐉

Pyrcrack ⭐ 109

Python Aircrack-ng bindings

Automation Troubleshooting Framework to validate and report configuration, software installed, etc with bash, python, and your language of choice.

Github dorking tool

Pypaseto ⭐ 87

PASETO for Python

Iotshark ⭐ 82

IotShark - Monitoring and Analyzing IoT Traffic

Mailripv2 ⭐ 80

Improved SMTP Checker / SMTP Cracker with proxy-support, inbox test and many more features.

Security Reviews ⭐ 79

A community collection of security reviews of open source software components.

Secator - the pentester's swiss knife

Gcp Firewall Enforcer ⭐ 76

A toolbox to enforce firewall rules across multiple GCP projects.

Cybersecurity ⭐ 73

Welcome Cybersecurity's World. An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources in Cybersecurity.

Btle Sniffer ⭐ 70

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Packet communication investigator

Industrial Security Auditing Framework ⭐ 52

ISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-aud

Dimorf is a ransomware using 256-bit AES with a self-destructing, randomly generated key for Linux OS´s

Masamune ⭐ 49

A smart contract security search utility

A Python SDK for Tufin Orchestration Suite

Assimilation Official ⭐ 49

This is the official main repository for the Assimilation project

Generator of static files for testing file upload. It can generate the png file of any number of bytes!

Multiscanner ⭐ 40

Security Tool which scans a target using OpenVAS, Zap, and Nexpose. And consolidates the scan result.

Dc Sonar ⭐ 39

Analyzing AD domains for security risks related to user accounts

Passmute ⭐ 39

PassMute - A multi featured Password Transmutation/Mutator Tool

Dependency Check Py ⭐ 37

🔐 Shim to easily install OWASP dependency-check-cli into Python projects

Tell Me Your Secrets ⭐ 35

Find secrets on any machine from over 120 Different Signatures.

Ransomware Json Dataset ⭐ 34

Compiles a json dataset using public sources that contains properties to aid in the detection and mitigation of over 1000 variants of ransomware.

Whispers ⭐ 34

Identify hardcoded secrets in static structured text (version 2)

Pentesting Multitool ⭐ 34

Different utility scripts for pentesting and hacking.

A very flexible phone number wordlist generator

ITWSV- Integrated Tool for Web Security Vulnerability

Pip Rating ⭐ 27

Check the health of your project's requirements and get a score for each dependency.

Secusphere ⭐ 26

Efficient DevSecOps

A web spider for shodan.io without using the Developer API.

Cisco Ios Audit ⭐ 24

Python script that parses a Cisco IOS configuration file and generates a report to efficiently perform an IT Security Audit

OpenVAS Management Protocol Client for Python

Simple security audit for linux systems

Cryptolyzer ⭐ 22

CryptoLyzer is a fast, flexible and comprehensive server cryptographic protocol (TLS, SSL, SSH, DNSSEC) and related setting (HTTP headers, DNS records) analyzer and fingerprint (JA3, HASSH tag) generator with Python API and CLI. (read-only clone of the original GitLab project)

Labsecurity ⭐ 21

Labsecurity is a tool that bundles ethical hacking python scripts into a single tool with cli interface.

Sec Scannode ⭐ 20

SEC分布式资产扫描系统

SMBScan is a tool to enumerate file shares on an internal network.

S3 Permission Checker ⭐ 18

Check read, write permissions on S3 buckets in your account

Nerfball ⭐ 18

Want to see how something like Internet Chemotherapy works without bricking your own vms? This is a jail to reduce the python runtime from doing bad things on the host when running untrusted code. Nerf what you do not need 👾 + 🐛 ⚽ 🏈 🐳

Zaproxy Automation ⭐ 17

This is a collection of ZAProxy Automation Tools and scripts to automate security tests of WEB Applications and WEB Sites

Mailripv3 ⭐ 16

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Blowhole ⭐ 14

Docker auditing and enumeration script.

Clair Singularity ⭐ 14

Scan Singularity container images using a Clair server

Requests Jwt ⭐ 14

Use JSON Web Tokens (JWT) for authentication with Requests

Gcp Iam Collector ⭐ 14

Python script for collecting and visualising Google Cloud Platform IAM permissions

Use CDNJS as a source to build hashes of known JS/CSS/IMG/... content used all over the internet

Awsbigbrother ⭐ 13

AWS Big Brother is a tool to analyse IAM users

Haram Tool Hacker Penetration Master ⭐ 13

Haram Tool is Software Web Penetration Testing Tool.

Cybersecurity Ethical Hacking ⭐ 12

An ongoing collection of awesome ethical hacking tools, software, libraries, learning tutorials, frameworks, academic and practical resources

Suid_scan ⭐ 11

Simple script to help you check for files with execute-as bits set.

Csplogger ⭐ 10

A CSP endpoint to aggregate, correlate and analyze report-uri violations across your infrastructure

Codeargos ⭐ 10

A python module for red teams to support the continuous recon of JavaScript files and HTML script blocks in an active web application.

Remediations Gendbuntu ⭐ 9

The main goal of this project is the configuration and control of various types of devices operating in a corporate environment. Information security is the main direction of development. Roles have default settings that can be dynamically overridden using "inventories" folder rules based on subnet, host group (organizational unit or branch), OS.

Pre Commit Hooks ⭐ 8

Hooks for Use With the pre-commit Framework: https://pre-commit.com

Google Cloud Security ⭐ 7

Functions to Alert and Remediate Google Cloud Platform Security Findings

Related Searches

Python Django (28,897)

Python Machine Learning (20,195)

Python Flask (17,643)

Python Dataset (14,792)

Python Docker (14,113)

Python Tensorflow (13,736)

Python Command Line (13,152)

Python Deep Learning (13,092)

Python Jupyter Notebook (12,976)

Python Network (11,495)

1-100 of 107 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.