vernu
vps-auditVPS Audit is a lightweight, dependency-free Bash script for security and performance auditing of Linux servers, specifically targeting Debian/Ubuntu...
28 repositories found
vernu
vps-auditVPS Audit is a lightweight, dependency-free Bash script for security and performance auditing of Linux servers, specifically targeting Debian/Ubuntu...
larlarua
AutoCVEAutoCVE is an agent-driven automated platform for CVE discovery through source code auditing, vulnerability verification, and report generation. It...
freelabz
secatorSecator is a task and workflow automation framework for security assessments that integrates dozens of well-known pentesting and OSINT tools (arjun,...
KeygraphHQ
shannonShannon is an autonomous AI pentester that performs white-box security testing of web applications and APIs by analyzing source code to identify...
doyensec
inqlInQL is a Burp Suite extension for advanced GraphQL security testing, providing vulnerability detection, customizable scans, and native Burp...
wazuh
wazuhWazuh is a free, open-source security platform providing unified XDR and SIEM capabilities for threat prevention, detection, and response across...
Syslifters
sysreptorSysReptor is a self-hosted or cloud-based penetration testing reporting platform that allows security professionals to design, write, and render...
Bearer
bearerBearer is an open-source static application security testing (SAST) tool that scans source code to identify security vulnerabilities and privacy...
OSV-Scanner is a vulnerability scanner written in Go that integrates with the OSV database to identify known vulnerabilities in project dependencies...
CISOfy
lynisLynis is a security auditing tool for UNIX-based systems (Linux, macOS, BSD) that performs in-depth security scans, tests compliance (ISO27001,...
pwndoc
pwndocPwnDoc is a collaborative pentest reporting platform that streamlines the generation of customizable Word documents from security audit findings....
prowler-cloud
prowlerProwler is an open-source cloud security platform that automates security and compliance auditing across AWS, Azure, and GCP environments. It is...
infobyte
faradayFaraday is an open-source vulnerability management platform designed to centralize, aggregate, and normalize security scan data from multiple tools...
dependency-check
DependencyCheckDependency-Check is a Software Composition Analysis (SCA) tool that detects publicly disclosed vulnerabilities in application dependencies by mapping...
lirantal
npqnpq is a command-line tool that audits npm packages before installation by checking against CVE databases, analyzing package metadata (age,...
goodwithtech
dockleDockle is a container image linter that scans Docker images for security vulnerabilities and best-practice violations, including CIS Benchmarks...
We5ter
Scanners-BoxScanners Box is a curated collection of 9,000+ open-source cybersecurity tools organized across 10+ categories, including AI-driven security agents,...
pypa
pip-auditpip-audit is a Python security scanning tool that identifies known vulnerabilities in package environments, requirements files, and dependency trees,...
future-architect
vulsVuls is an agent-less vulnerability scanner written in Go that detects security vulnerabilities across Linux, FreeBSD, Windows, macOS, containers,...
gojue
ecaptureeCapture is a specialized eBPF-based tool for capturing SSL/TLS plaintext traffic without certificate infrastructure, supporting Linux and Android...
nfcgate
nfcgateNFCGate is an Android research toolkit for capturing, analyzing, and modifying NFC traffic, enabling security researchers and protocol engineers to...
presidentbeef
brakemanBrakeman is a static analysis security scanner specifically designed for Ruby on Rails applications, detecting vulnerabilities in Rails code without...
ssh-mitm
ssh-mitmSSH-MITM is an interactive SSH interception tool designed for authorized security audits and penetration testing. It allows auditors to position...
rubysec
bundler-auditbundler-audit is a specialized security tool for Ruby projects that performs patch-level vulnerability scanning of gem dependencies in Gemfile.lock...
kpcyrd
sn0intsn0int is a semi-automatic OSINT framework and package manager designed for IT security professionals, bug bounty hunters, and law enforcement to...
qdhenry
Claude-Command-SuiteClaude Command Suite is a specialized development toolkit providing 216+ slash commands, 12 Claude Code skills, and 54 AI agents specifically...
wireghoul
grauditgraudit is a lightweight static source code auditing tool that uses grep and regex signatures to detect potential security vulnerabilities across...
find-sec-bugs
find-sec-bugsFind Security Bugs is a SpotBugs plugin that performs static security analysis on Java, Kotlin, Groovy, and Scala codebases, detecting common...
Weekly newsletter
Every Monday: the repos worth your attention, anomaly signals and deep AI analysis. No fluff, unsubscribe any time.