Repository navigation

#

devsecops

aquasecurity / trivy 

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

安全Dockercontainersvulnerability-scannersvulnerability-detectionvulnerabilityGoKubernetesHacktoberfestdevsecopsmisconfigurationInfrastructure as code
Go
29298
2 天前
gitleaks / gitleaks 

Find secrets with Gitleaks 🔑

安全GitGosecretgitleaksdevsecopsHacktoberfestCI/CD命令行界面data-loss-preventiondlpOpen Sourceai-powered大语言模型llm-inferencellm-training
Go
23513
9 天前
trufflesecurity/trufflehog
trufflesecurity / trufflehog 

Find, verify, and analyze leaked credentials

secrettrufflehogcredentials安全devsecopsdynamic-analysissecretsverificationsecret-managementprecommitscanning
Go
22643
2 天前
MobSF/Mobile-Security-Framework-MobSF
MobSF / Mobile-Security-Framework-MobSF 

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

static-analysisdynamic-analysismobsfandroid-securitymobile-securitywindows-mobile-securityios-securityapi-testingweb-securitymalware-analysisruntime-securitydevsecopsapkREST APIcweowaspmstgmasvsmastg
JavaScript
19540
2 小时前
bytebase/bytebase
bytebase / bytebase 

World's most advanced database DevSecOps solution for Developer, Security, DBA and Platform Engineering teams. The GitHub/GitLab for database DevSecOps.

MySQLtidbPostgreSQLsnowflakeCI/CDsql-clientOracle 数据库sql-serverschema-migrationsGitOpsflywayliquibasedevsecopsdata-maskingdata-security安全dbeaverdatabase-accesspamMongoDB
Go
13074
22 分钟前
prowler-cloud/prowler
prowler-cloud / prowler 

Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more

安全security-hardeninghardeningAmazon Web Servicescis-benchmarkcompliancegdprforensicsclouddevsecopsAzureiamPythonGoogle 云multi-cloudcspmcloudsecurityHacktoberfest
Python
12166
1 天前
gravitl / netmaker 

Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

wireguardVirtual Private Networkmeshzero-trustdevsecopsKuberneteswireguard-uicloud安全wg-quickwireguard-vpnvpn-servervirtual-networking自托管mesh-networkoverlay-networkipv6-supportsecure-remote-accesssite-to-site
Go
10863
3 天前
bunkerity/bunkerweb
bunkerity / bunkerweb 

🛡️ Open-source and next-generation Web Application Firewall (WAF)

nginxmodsecurityDocker安全dnsblreverse-proxybunkerized-nginxhardeningweb-securitysecurity-tuningCybersecuritydevsecopsantibotletsencryptswarmKubernetesDevOpshostingwafweb-application-firewall
Python
9156
1 天前
We5ter/Scanners-Box
We5ter / Scanners-Box 

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

pentesting-toolsvulnerability-scannersCybersecurityredteam-toolspenetration-testingdevsecopssecurity-automationsmart-contractsbinary-analysisexploitation-frameworkmalware-analysis安全code-analyzerstatic-analysiswifi-hackingwifi-security
8659
1 个月前
firezone/firezone
firezone / firezone 

Enterprise-ready zero-trust access platform built on WireGuard®.

cloudVirtual Private Networkfirewall安全wireguardwireguard-vpnwireguard-uivpn-servernetwork-security自托管virtual-networkNetworkdevsecops隐私Elixirelixir-langRustliveviewphoenix
Elixir
8072
2 小时前
turbot/steampipe
turbot / steampipe 

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

steampipePostgreSQLpostgresql-fdwcloud安全Amazon Web ServicesAzureciscnappcspmDevOpsdevsecopsGoogle 云GoKubernetesTerraformetlSQLiteHacktoberfest
Go
7523
5 天前
aquasecurity/tfsec
aquasecurity / tfsec 

Tfsec is now part of Trivy

Terraform安全scannerstatic-analysis持续集成Amazon Web ServicesAzureGoogle 云complianceInfrastructure as codedevsecopsvulnerability-scannersmisconfigurationdigitaloceanDevOpslinterGoHacktoberfest
Go
6894
1 个月前
sottlmarek / DevSecOps 

Ultimate DevSecOps library

安全DevOpsdevsecopscloud工具Amazon Web ServicesKubernetesDockerAwesome ListsAzureGoogle 云CybersecurityServerlessCI/CD自动化containers
6414
3 个月前
infobyte / faraday 

Open Source Vulnerability Management Platform

DevOpspenetration-testingvulnerabilityvulnerability-scanners安全pentestingcontinuous-scanningCybersecurityvulnerability-managementcollaborationburpsuitenessusnmapdevsecopssecurity-automationorchestrationCommon Vulnerabilities and Exposures (CVE)appsec
Python
5959
1 天前
madhuakula/kubernetes-goat
madhuakula / kubernetes-goat 

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

Kubernetesvulnerable-app安全Hackingpentestinginfrastructurecloud-securityDockercontainerkubernetes-goatdevsecopscloudsecuritykubernetes-securitycontainer-securityowaspcloud-nativeblueteamredteam
HTML
5229
4 个月前
deepfence/ThreatMapper
deepfence / ThreatMapper 

Open Source Cloud Native Application Protection Platform (CNAPP)

cloud-nativevulnerability-managementthreat-analysisdevsecopssecopsregistry-scanning安全cwppobservabilitycloudsecurityvulnerability-scannersvulnerability-detectionscanning-toolcnappcompliancecontainerscspmDevOpsKubernetesHacktoberfest
TypeScript
5168
2 个月前
tenable/terrascan
tenable / terrascan 

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

安全Infrastructure as codedevsecopsDevOpsTerraformAmazon Web Servicescloudsecuritycloud-securityterrascaninfrastructuresecurity-violationsarchitectureKubernetessastazure-securityaws-securitygcp-securityscans
Go
5162
2 个月前
devsecops / awesome-devsecops 

An authoritative list of awesome devsecops tools with the help from community experiments and contributions.

devsecopsthreat-intelligenceDevOpspodcast
5077
1 年前
hahwul/dalfox
hahwul / dalfox 

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

xss安全Bug Bountybugbounty-toolGoxss-scannerdevsecopscicd-pipelinevulnerabilityxss-detectionxss-bruteforcexss-exploitHacktoberfest
Go
4583
4 天前
DefectDojo / django-DefectDojo 

Open-Source Unified Vulnerability Management, DevSecOps & ASPM

Pythonvulnerability-databasesDjango安全owaspanalyticsvulnerability-management自动化security-automationsecurity-orchestrationdevsecopsvulnerability-correlationKubernetesHacktoberfestappsec
HTML
4238
2 小时前