Go Infosec

Open-source Go projects categorized as Infosec

Top 23 Go Infosec Projects

  • ffuf

    Fast web fuzzer written in Go

    Project mention: The 36 tools that SaaS can use to keep their product and data safe from criminal hackers (manual research) | /r/SaaS | 2023-05-22

    FFUF

  • traitor

    :arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

  • InfluxDB

    Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.

  • hetty

    An HTTP toolkit for security research.

    Project mention: Hetty - An http toolkit for security research. | /r/github_trends | 2022-08-12
  • Cameradar

    Cameradar hacks its way into RTSP videosurveillance cameras

    Project mention: Hacking ip cameras | /r/Hacking_Tutorials | 2023-04-29

    You might want to try this tool https://github.com/Ullaakut/cameradar , as most of the webcams are based on RTSP( Real-Time Streaming Protocol ) protocol.

  • jaeles

    The Swiss Army knife for automated Web Application Testing

  • sx

    :vulcan_salute: Fast, modern, easy-to-use network scanner

  • Adalanche

    Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)

    Project mention: Adalanche v2023.5.3 released | /r/activedirectory | 2023-05-03

    You can find open source edition at GitHub (https://github.com/lkarlslund/Adalanche) as usual.

  • SonarQube

    Static code analysis for 29 languages.. Your projects are multi-language. So is SonarQube analysis. Find Bugs, Vulnerabilities, Security Hotspots, and Code Smells so you can release quality code every time. Get started analyzing your projects today for free.

  • metabigor

    OSINT tools and more but without API ke

    Project mention: Metabigor - An Intelligence tool, its goal is to do OSINT tasks and more but without any API key. | /r/CKsTechNews | 2023-03-30
  • cariddi

    Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

    Project mention: cariddi v1.3.1 is out🥳 | /r/opensource | 2023-03-24

    cariddi is an open source (https://github.com/edoardottt/cariddi) web security tool. It takes as input a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more.

  • go-dork

    The fastest dork scanner written in Go.

  • Open-Source-Security-Guide

    Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

    Project mention: Degree vs Certifications | /r/sysadmin | 2023-03-23

    Cyber Security is one of the biggest needs in the industry right now as well. This Github has a lot of information for all the different areas.

  • threagile

    Agile Threat Modeling Toolkit

    Project mention: stumbled upon a new threat modeling resource | /r/threatmodeling | 2023-01-24
  • EDRHunt

    Scan installed EDRs and AVs on Windows

  • ppmap

    A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.

  • lit-bb-hack-tools

    Little Bug Bounty & Hacking Tools⚔️

  • linx

    Reveals invisible links within JavaScript files

    Project mention: Hacker News top posts: Jun 27, 2022 | /r/hackerdigest | 2022-06-27

    Linx – Reveals invisible links within JavaScript files\ (6 comments)

  • rpCheckup

    rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.

  • notionterm

    🖥️📖 Embed reverse shell in Notion pages

  • favirecon

    Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.

    Project mention: Boost your recon phase with favirecon | /r/bugbounty | 2023-02-16

    Just open sourced favirecon! 🥳 - Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services. https://github.com/edoardottt/favirecon Help me improving the database! #infosec #recon #security #hacking

  • sgCheckup

    sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.

  • talosplus

    Talosplus is a fast and robust template based Intelligent automation framework primarily developed for Bug Bounty Automation

  • gigger

    Git folder digger, I'm sure it's worthwhile stuff.

  • goblob

    A fast enumeration tool for publicly exposed Azure Storage blobs.

    Project mention: goblob: A fast enumeration tool for publicly exposed Azure Storage blobs. | /r/blueteamsec | 2023-03-19
  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2023-05-22.

Go Infosec related posts

Index

What are some of the best open-source Infosec projects in Go? This list will help you:

Project Stars
1 ffuf 9,456
2 traitor 5,929
3 hetty 5,254
4 Cameradar 3,361
5 jaeles 1,849
6 sx 1,317
7 Adalanche 1,121
8 metabigor 928
9 cariddi 919
10 go-dork 794
11 Open-Source-Security-Guide 703
12 threagile 470
13 EDRHunt 457
14 ppmap 410
15 lit-bb-hack-tools 242
16 linx 189
17 rpCheckup 153
18 notionterm 117
19 favirecon 88
20 sgCheckup 79
21 talosplus 76
22 gigger 37
23 goblob 36
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com