A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

DevSecOps, ASPM, Vulnerability Management. All on one platform.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Automated Adversary Emulation Platform

Open Source Vulnerability Management Platform

Infection Monkey - An open-source adversary emulation platform

Security automation content in SCAP, Bash, Ansible, and other formats

🐚 Python-powered, cross-platform, Unix-gazing shell.

Go security checker

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

Automated Security Testing For REST API's

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Ansible role for Red Hat 7 CIS Baseline

Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.

PacBot (Policy as Code Bot)

Hardening Ubuntu. Systemd edition.

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.