#

devsecops

Here are 867 public repositories matching this topic...

aquasecurity / trivy

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

go docker kubernetes golang security containers iac vulnerability infrastructure-as-code vulnerability-detection hacktoberfest vulnerability-scanners security-tools devsecops misconfiguration

Updated Apr 27, 2024
Go

Mobile-Security-Framework-MobSF

MobSF / Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

rest static-analysis apk owasp dynamic-analysis web-security malware-analysis mobsf android-security mobile-security windows-mobile-security ios-security api-testing cwe devsecops runtime-security mstg masvs mastg

Updated Apr 14, 2024
JavaScript

gitleaks / gitleaks

Protect and discover secrets using Gitleaks 🔑

git go golang security secret hacktoberfest security-tools devsecops gitleaks

Updated Apr 25, 2024
Go

trufflehog

trufflesecurity / trufflehog

Find and verify secrets

security credentials secret secret-management verification secrets dynamic-analysis scanning hacktoberfest precommit security-tools devsecops trufflehog

Updated Apr 28, 2024
Go

prowler

prowler-cloud / prowler

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

python aws security security-audit cloud azure iam gcp forensics compliance hardening security-hardening gdpr multi-cloud security-tools devsecops cis-benchmark well-architected

Updated Apr 26, 2024
Python

gravitl / netmaker

Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.

kubernetes security cloud networking network self-hosted vpn mesh vpn-server k8s wireguard virtual-network devsecops zero-trust wireguard-vpn wg-quick virtual-networking wireguard-ui

Updated Apr 28, 2024
Go

Scanners-Box

We5ter / Scanners-Box

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

security-audit static-analysis smart-contracts penetration-testing malware-analysis binary-analysis information-security exploitation-framework vulnerability-scanners wifi-security hacker-tools security-automation devsecops apk-analysis wifi-hacking pentesting-tools redteam-tools code-analyzer privacy-compliance

Updated Apr 19, 2024

tfsec

aquasecurity / tfsec

Security scanner for your Terraform code

go aws security digitalocean devops ci azure terraform scanner linter static-analysis infrastructure-as-code compliance google-cloud-platform hacktoberfest vulnerability-scanners devsecops misconfiguration terraform-security

Updated Apr 24, 2024
Go

steampipe

turbot / steampipe

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

Updated Apr 26, 2024
Go

firezone

firezone / firezone

WireGuard®-based zero-trust access platform with OIDC auth, identity sync, and NAT traversal.

Updated Apr 27, 2024
Elixir

sottlmarek / DevSecOps

Ultimate DevSecOps library

docker kubernetes aws security devops automation awesome cloud serverless tool azure containers gcp ci-cd cybersecurity k8s awesome-list devsecops ssdlc

Updated Mar 15, 2024

ThreatMapper

deepfence / ThreatMapper

Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.

Updated Apr 28, 2024
TypeScript

infobyte / faraday

Open Source Vulnerability Management Platform

Updated Apr 5, 2024
Python

terrascan

tenable / terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Updated Apr 14, 2024
Go

devsecops / awesome-devsecops

An authoritative list of awesome devsecops tools with the help from community experiments and contributions.

devops podcast devsecops threat-intelligence

Updated Dec 28, 2023

kubernetes-goat

madhuakula / kubernetes-goat

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

docker kubernetes infrastructure security container hacking owasp k8s cloud-native pentesting blueteam cloudsecurity devsecops cloud-security redteam container-security vulnerable-app kubernetes-security kubernetes-goat

Updated Mar 28, 2024
HTML

bunkerweb

bunkerity / bunkerweb

🛡️ Make your web services secure by default !

Updated Apr 26, 2024
Python

DefectDojo / django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.

python kubernetes security automation django analytics owasp vulnerability-databases appsec vulnerability-management hacktoberfest security-orchestration security-automation devsecops vulnerability-correlation

Updated Apr 27, 2024
HTML

dalfox

hahwul / dalfox

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

golang security xss vulnerability bugbounty xss-scanner xss-detection devsecops xss-exploit xss-bruteforce cicd-pipeline bugbounty-tool

Updated Apr 20, 2024
Go

deepfence / SecretScanner

🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓

docker kubernetes security containers secrets password k8s hacktoberfest vulnerability-scanners security-tools devsecops secret-keys secrets-management secrets-detection scanning-tool infosectools

Updated Apr 25, 2024
Go

Improve this page

Add a description, image, and links to the devsecops topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the devsecops topic, visit your repo's landing page and select "manage topics."