139 results found Sort:
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Created
2013-12-10
3,685 commits to master branch, last one 4 days ago
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. ...
Created
2016-08-24
3,598 commits to master branch, last one 13 hours ago
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Created
2015-08-11
34,450 commits to master branch, last one 10 hours ago
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
Created
2015-12-28
5,088 commits to main branch, last one 20 hours ago
immudb - immutable database based on zero trust, SQL/Key-Value/Document model, tamperproof, data change history
Created
2019-11-07
4,761 commits to master branch, last one a day ago
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Created
2019-11-27
16,108 commits to main branch, last one a day ago
Security scanner for your Terraform code
Created
2019-03-04
1,341 commits to master branch, last one 25 days ago
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
Created
2016-03-01
4,618 commits to main branch, last one 16 hours ago
Open Source Cloud Native Application Protection Platform (CNAPP)
Created
2020-02-06
6,867 commits to main branch, last one 16 hours ago
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
Created
2013-09-17
5,874 commits to master branch, last one 21 days ago
InSpec: Auditing and Testing Framework
Created
2015-08-28
11,363 commits to main branch, last one 22 hours ago
HardeningKitty and Windows Hardening settings and configurations
Created
2017-10-23
671 commits to master branch, last one 11 days ago
Security automation content in SCAP, Bash, Ansible, and other formats
Created
2014-04-29
35,816 commits to master branch, last one 11 hours ago
A FAST Kubernetes manifests validator, with support for Custom Resources!
Created
2020-05-30
386 commits to master branch, last one 22 days ago
Open-source infrastructure and data orchestration platform for risk decisioning
Created
2022-10-02
1,572 commits to dev branch, last one a day ago
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Created
2022-09-27
1,237 commits to main branch, last one a day ago
HummerRisk 是云原生安全平台,包括混合云安全治理和云原生安全检测。
Created
2022-06-03
3,116 commits to master branch, last one 7 months ago
macOS Security Compliance Project
Created
2020-06-05
1,336 commits to main branch, last one about a month ago
Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber
This repository has been archived
(exclude archived)
Created
2016-02-26
449 commits to master branch, last one 5 years ago
A suite of tools to automate software compliance checks.
Created
2017-10-19
15,579 commits to main branch, last one 23 hours ago
Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.
Created
2022-09-01
121 commits to main branch, last one 4 months ago
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTra...
Created
2021-03-16
3,454 commits to master branch, last one about a month ago
a lightweight, security focused, BDD test framework against terraform.
Created
2017-04-02
1,160 commits to master branch, last one about a month ago
NIST Certified SCAP 1.2 toolkit
Created
2014-04-29
11,234 commits to main branch, last one 22 days ago
Compliance automation framework, focused on SOC2
Created
2018-03-07
240 commits to master branch, last one about a year ago
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/co...
Created
2020-06-12
554 commits to main branch, last one 23 days ago
Plugin for sudo that requires another human to approve and monitor privileged sudo sessions
Created
2018-05-04
373 commits to master branch, last one about a year ago
Linting tool for CloudFormation templates
Created
2016-02-11
664 commits to master branch, last one about a year ago
Secure SDK/vault for personal records/PII built to comply with GDPR
Created
2019-12-08
1,021 commits to master branch, last one 10 days ago
Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dockerfiles. The SBOM that Tern generates will give you a layer-by-...
Created
2017-11-27
1,102 commits to main branch, last one 5 months ago