Chowkidar automates security scans, leveraging open-source tools to identify vulnerabilities. Users simply input project details to receive detailed, actionable reports, ensuring robust security with minimal effort.

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

Audit your Node version for known CVEs and patches

Audit your PHP version for known CVEs and patches

My useful files for penetration tests, security assessments, bug bounty and other security related stuff

Fully Automated Nim Packages Security Audit

A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

A rule-driven engine designed for seamless extraction of data from JavaScript files.

A curated list of cryptography resources and links. With repository stars⭐ and forks🍴

Terraform module for creating alarms for tracking important changes and occurrences from cloudtrail.

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Create, share, and run runbooks from your terminal.

Open Source Vulnerability Management Platform

JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.

Audits Python environments, requirements files and dependency trees for known security vulnerabilities, and can automatically fix them

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

paradrop cybersecurity asset management tool