集合主题趋势排行榜

#

devsecops

aquasecurity / trivy

一个漏洞扫描工具，可用于扫描容器镜像、系统文件、Git仓库、以及配置和硬编码密钥等

安全 Docker containers vulnerability-scanners vulnerability-detection vulnerability Go Kubernetes Hacktoberfest devsecops misconfiguration Infrastructure as code

Go 25.46 k

1 天前

gitleaks / gitleaks

#大语言模型#Gitleaks 是一个开源SAST（静态应用安全测试）命令行工具，用于检测Git 仓库以防止把密码、API 密钥和访问令牌等机密信息硬编码到代码中

安全 Git Go secret gitleaks devsecops Hacktoberfest CI/CD 命令行界面 data-loss-prevention dlp Open Source ai-powered 大语言模型 llm-inference llm-training

Go 19.53 k

2 天前

trufflesecurity/trufflehog

trufflesecurity / trufflehog

TruffleHog 是一个用来探测泄漏密钥的工具，支持扫描的数据源包括git、github、gitlab、S3、文件系统、文件和标准输入

secret trufflehog credentials 安全 devsecops dynamic-analysis secrets verification Hacktoberfest secret-management precommit scanning

Go 18.74 k

1 天前

MobSF/Mobile-Security-Framework-MobSF

MobSF / Mobile-Security-Framework-MobSF

MobSF （移动端安全框架）是一个自动化的移动端应用程序(Android/iOS/Windows)安全问题检出的框架和工具，可以进行静态和动态分析的渗透测试，恶意软件分析和安全评估

static-analysis dynamic-analysis mobsf android-security mobile-security windows-mobile-security ios-security api-testing web-security malware-analysis runtime-security devsecops apk REST API cwe owasp mstg masvs mastg

JavaScript 18.4 k

17 天前

bytebase/bytebase

bytebase / bytebase

Bytebase 是一个开源数据库 DevOps 工具，帮助应用开发者和 DBA 管理数据库 Schema (DDL) 和数据 (DML) 的生命周期

MySQL tidb PostgreSQL snowflake CI/CD sql-client Oracle 数据库 sql-server schema-migrations GitOps flyway liquibase devsecops data-masking data-security 安全 dbeaver database-access pam MongoDB

Go 12.26 k

8 小时前

prowler-cloud/prowler

prowler-cloud / prowler

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics re...

翻译 - Prowler 是一种安全工具，用于执行 AWS 安全最佳实践评估、审计、事件响应、持续监控、强化和取证准备。它包含此处列出的所有 CIS 控件 https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf 以及 100 多项有助于满足 GDPR、HIPAA 和其他安全要求的额外检查。

安全 security-hardening hardening Amazon Web Services cis-benchmark compliance gdpr forensics cloud well-architected devsecops Azure iam Python Google 云 multi-cloud Software as a service cspm

Python 11.49 k

8 小时前

gravitl / netmaker

Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

翻译 - Netmaker制造网络。 Netmaker使在所有环境中的联网变得轻松，快速和安全。

wireguard virtual-network Virtual Private Network mesh zero-trust devsecops Network Kubernetes wireguard-ui cloud 安全 wireguard-vpn vpn-server 自托管 overlay-network

Go 10.04 k

14 小时前

We5ter/Scanners-Box

We5ter / Scanners-Box

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

pentesting-tools vulnerability-scanners Cybersecurity redteam-tools penetration-testing devsecops security-automation smart-contracts binary-analysis exploitation-framework malware-analysis 安全 static-analysis wifi-hacking wifi-security

8.46 k

5 个月前

bunkerity/bunkerweb

bunkerity / bunkerweb

🛡️ Open-source and next-generation Web Application Firewall (WAF)

翻译 - nginx Docker镜像默认是安全的。

nginx modsecurity Docker 安全 dnsbl reverse-proxy bunkerized-nginx hardening web-security security-tuning Cybersecurity devsecops antibot letsencrypt swarm Kubernetes DevOps hosting waf web-application-firewall

Python 7.82 k

1 天前

turbot/steampipe

turbot / steampipe

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

steampipe PostgreSQL postgresql-fdw cloud 安全 Amazon Web Services Azure cis cnapp cspm DevOps devsecops Google 云 Go Kubernetes Terraform etl SQLite Hacktoberfest

Go 7.28 k

1 天前

firezone/firezone

firezone / firezone

Enterprise-ready zero-trust access platform built on WireGuard®.

cloud Virtual Private Network firewall 安全 wireguard wireguard-vpn wireguard-ui vpn-server network-security 自托管 virtual-network Network devsecops 隐私 Elixir elixir-lang Rust liveview phoenix

Elixir 7.15 k

6 小时前

aquasecurity/tfsec

aquasecurity / tfsec

Tfsec is now part of Trivy

翻译 - 🔒🌍为您的Terraform代码提供静态分析支持的安全扫描器

Terraform 安全 scanner static-analysis 持续集成 Amazon Web Services Azure Google 云 compliance Infrastructure as code devsecops vulnerability-scanners misconfiguration digitalocean DevOps linter Go Hacktoberfest

Go 6.81 k

2 个月前

sottlmarek / DevSecOps

#Awesome#Ultimate DevSecOps library

翻译 - 终极 DevSecOps 库

安全 DevOps devsecops cloud 工具 Amazon Web Services Kubernetes Docker Awesome Lists Azure Google 云 Cybersecurity Serverless CI/CD 自动化 containers

5.98 k

5 个月前

infobyte / faraday

Open Source Vulnerability Management Platform

翻译 - 协同渗透测试和漏洞管理平台

DevOps penetration-testing vulnerability vulnerability-scanners 安全 pentesting continuous-scanning Cybersecurity vulnerability-management collaboration burpsuite nessus nmap devsecops security-automation orchestration Common Vulnerabilities and Exposures (CVE)appsec

Python 5.35 k

1 个月前

deepfence/ThreatMapper

deepfence / ThreatMapper

Open Source Cloud Native Application Protection Platform (CNAPP)

翻译 - 识别运行容器、图像、主机和存储库中的漏洞

TypeScript 4.97 k

4 天前

tenable/terrascan

tenable / terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

翻译 - 在配置云原生基础架构之前，将整个基础架构中的合规性和安全违规行为作为代码进行检测，以降低风险。

安全 Infrastructure as code devsecops DevOps Terraform Amazon Web Services cloudsecurity cloud-security terrascan infrastructure architecture Kubernetes sast azure-security aws-security gcp-security scans

Go 4.9 k

4 个月前

devsecops / awesome-devsecops

An authoritative list of awesome devsecops tools with the help from community experiments and contributions.

devsecops threat-intelligence DevOps podcast

4.82 k

1 年前

madhuakula/kubernetes-goat

madhuakula / kubernetes-goat

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

翻译 - Kubernetes山羊是一个“易受设计攻击的” Kubernetes集群。

Kubernetes vulnerable-app 安全 Hacking pentesting infrastructure cloud-security Docker container kubernetes-goat devsecops cloudsecurity kubernetes-security container-security owasp cloud-native blueteam redteam

HTML 4.7 k

2 个月前

hahwul/dalfox

hahwul / dalfox

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

翻译 - 🦊DalFox（XSS的查找器）/基于golang的参数分析和XSS扫描工具

xss 安全 Bug Bounty bugbounty-tool Go xss-scanner devsecops cicd-pipeline vulnerability xss-detection xss-bruteforce xss-exploit Hacktoberfest

Go 4.17 k

1 天前

DefectDojo / django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.

翻译 - DefectDojo是一个开源应用程序漏洞关联和安全协调工具。

Python vulnerability-databases Django 安全 owasp analytics vulnerability-management 自动化 security-automation security-orchestration devsecops vulnerability-correlation Kubernetes Hacktoberfest appsec

HTML 3.96 k

2 小时前

loading...

Website
Wikipedia