Go security-tools

Open-source Go projects categorized as security-tools

Top 23 Go security-tool Projects

security-tools
  • trivy

    Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

    Project mention: 🛡️ Effective Vulnerability Monitoring in Kubernetes | dev.to | 2024-08-26
  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  • gitleaks

    Protect and discover secrets using Gitleaks 🔑

    Project mention: Gitleaks – Protect and Discover Secrets | news.ycombinator.com | 2024-09-08
  • trufflehog

    Find, verify, and analyze leaked credentials

    Project mention: Accident Forgiveness | news.ycombinator.com | 2024-08-24

    https://github.com/trufflesecurity/trufflehog is a similar tool but checks for far more secrets, so I think it'd be a better choice.

  • SafeLine

    serve as a reverse proxy to protect your web services from attacks and exploits.

    Project mention: 6 Powerful Free Security Tools That Will Surprise You | dev.to | 2024-10-09

    Tool Link: https://waf.chaitin.com/

  • vuls

    Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

  • sliver

    Adversary Emulation Framework

  • gosec

    Go security checker

    Project mention: About the gosec G115 drama, or how I faced back integer conversion overflow in Go | dev.to | 2024-09-09

    Because of this, gosec a linter focused on improving the security in Go, provided a linter to detect the issue: the linter G115

  • certificates

    🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

    Project mention: Special-Use Domain 'Home.arpa.' | news.ycombinator.com | 2024-06-04

    I've been doing this for a while with SmallStep CA: https://github.com/smallstep/certificates

    It's a bit of a pain to load a cert onto every device (easier with stuff like Ansible if you have a bunch of linux devices), but manageable. And it lets me do proper trusted TLS for a lot of stuff that would otherwise be self-signed.

    One thing I recommend is to add X509v3 Name Constraints extensions to your root CA if you go down this path. It prevents the CA from being abused to MITM you for other URLS (at least for browsers/clients that respect names constraints)

    ```

  • traitor

    :arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

  • osv-scanner

    Vulnerability scanner written in Go which uses the data provided by https://osv.dev

  • scan4all

    Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

  • syzkaller

    syzkaller is an unsupervised coverage-guided kernel fuzzer

    Project mention: Automated Unit Test Improvement Using Large Language Models at Meta | news.ycombinator.com | 2024-02-17

    https://arxiv.org/abs/2402.09171 :

    > This paper describes Meta's TestGen-LLM tool, which uses LLMs to automatically improve existing human-written tests. TestGen-LLM verifies that its generated test classes successfully clear a set of filters that assure measurable improvement over the original test suite, thereby eliminating problems due to LLM hallucination. [...] We believe this is the first report on industrial scale deployment of LLM-generated code backed by such assurances of code improvement.

    Coverage-guided unit test improvement might [with LLMs] be efficient too.

    https://github.com/topics/coverage-guided-fuzzing :

    - e.g. Google/syzkaller is a coverage-guided syscall fuzzer: https://github.com/google/syzkaller

    - Gitlab CI supports coverage-guided fuzzing: https://docs.gitlab.com/ee/user/application_security/coverag...

    - oss-fuzz, osv

    Additional ways to improve tests:

    Hypothesis and pynguin generate tests from type annotations.

    There are various tools to generate type annotations for Python code;

    > pytype (Google) [1], PyAnnotate (Dropbox) [2], and MonkeyType (Instagram) [3] all do dynamic / runtime PEP-484 type annotation type inference [4] to generate type annotations. https://news.ycombinator.com/item?id=39139198

    icontract-hypothesis generates tests from icontract DbC Design by Contract type, value, and invariance constraints specified as precondition and postcondition @decorators:

  • osmedeus

    A Workflow Engine for Offensive Security

  • spicedb

    Open Source, Google Zanzibar-inspired database for scalably storing and querying fine-grained authorization data

  • Modlishka

    Modlishka. Reverse Proxy.

  • terrascan

    Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

    Project mention: Cloud Security and Resilience: DevSecOps Tools and Practices | dev.to | 2024-05-01

    2. Terrascan: https://github.com/tenable/terrascan Terrascan detects security vulnerabilities and compliance violations across your IaC. Supports multiple cloud providers, ensuring that your infrastructure complies with security best practices.

  • Cameradar

    Cameradar hacks its way into RTSP videosurveillance cameras

  • cli

    🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc. (by smallstep)

    Project mention: Google will disable all but OAuth for IMAP, SMTP and POP starting Sept. 30 | news.ycombinator.com | 2024-01-18

    https://github.com/smallstep/cli implements some OAuth flows from the CLI, it may be helpful for you.

  • SecretScanner

    :unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

  • dockle

    Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

  • Stowaway

    👻Stowaway -- Multi-hop Proxy Tool for pentesters

    Project mention: Stowaway -- Multi-hop Proxy Tool for pentesters | /r/hacking | 2023-11-13
  • ContainerSSH

    ContainerSSH: Launch containers on demand

  • Picocrypt

    A very small, very simple, yet very secure encryption tool.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Go security-tools discussion

Log in or Post with

Go security-tools related posts

  • Do not use secrets in environment variables and

    6 projects | news.ycombinator.com | 7 Oct 2024
  • About the gosec G115 drama, or how I faced back integer conversion overflow in Go

    1 project | dev.to | 9 Sep 2024
  • Gitleaks – Protect and Discover Secrets

    1 project | news.ycombinator.com | 8 Sep 2024
  • Day 25: Container Security with Trivy - My 90 Days of DevOps Journey

    1 project | dev.to | 14 Aug 2024
  • Enhancing Kubernetes Security with Trivy : Day 15 of 50 days DevOps Tools Series

    1 project | dev.to | 24 Jul 2024
  • Gitleaks: Find forgotten codes in your repositories

    2 projects | dev.to | 13 Jul 2024
  • Special-Use Domain 'Home.arpa.'

    1 project | news.ycombinator.com | 4 Jun 2024
  • A note from our sponsor - SaaSHub
    www.saashub.com | 9 Oct 2024
    SaaSHub helps you find the best software and product alternatives Learn more →

Index

What are some of the best open-source security-tool projects in Go? This list will help you:

Project Stars
1 trivy 23,115
2 gitleaks 17,529
3 trufflehog 15,848
4 SafeLine 12,072
5 vuls 10,930
6 sliver 8,315
7 gosec 7,772
8 certificates 6,663
9 traitor 6,631
10 osv-scanner 6,154
11 scan4all 5,463
12 syzkaller 5,331
13 osmedeus 5,283
14 spicedb 4,995
15 Modlishka 4,805
16 terrascan 4,708
17 Cameradar 4,058
18 cli 3,651
19 SecretScanner 3,115
20 dockle 2,761
21 Stowaway 2,732
22 ContainerSSH 2,675
23 Picocrypt 2,427

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com

Did you konow that Go is
the 4th most popular programming language
based on number of metions?