reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.Project mention: Are ASM tools worth it? | reddit.com/r/cybersecurity | 2022-11-09
rEngine is one of the most famous ones I believe https://github.com/yogeshojha/rengine
Appwrite - The Open Source Firebase alternative introduces iOS support . Appwrite is an open source backend server that helps you build native iOS applications much faster with realtime APIs for authentication, databases, files storage, cloud functions and much more!
Hide secrets with invisible characters in plain text securely using passwords 🧙🏻♂️⭐Project mention: Docker options for stegangraphy? | reddit.com/r/selfhosted | 2023-02-11
Does anybody know of a steganography app that can be containerized in docker similar to stegcloak or PixelKnot? really would like a selfhosted option for these apps.
Captfencoder is a rapid cross platform network security tool suite, providing network security related code conversion, classical cryptography, cryptography, asymmetric encryption, miscellaneous tools, and aggregating all kinds of online tools.
🎖safely* install packages with npm or yarn by auditing them as part of your install processProject mention: The rising trend of malicious packages in open source ecosystems | Snyk | reddit.com/r/netsec | 2023-03-26
You just described my project called npq: https://github.com/lirantal/npq :-)
secureCodeBox (SCB) - continuous secure delivery out of the box
A repository for maintaining lists of things like malicious URLs, fake token addresses, and so forth. We love lists.Project mention: List of public / known Ethereum addresses? | reddit.com/r/ethtrader | 2022-06-25
Various github repos dedicated to labeling addresses like https://github.com/MyEtherWallet/ethereum-lists and forks, pull requests, and lists derived from them
Access the most powerful time series database as a service. Ingest, store, & analyze all types of time series data in a fully-managed, purpose-built database. Keep data forever with low-cost storage and superior data compression.
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.Project mention: How to use GitLab SAST tool to detect simple DOM vulnerability? | reddit.com/r/webdev | 2023-03-10
That's the one! Rules are here: https://github.com/ajinabraham/njsscan/tree/master/njsscan/rules
Security & License Compliance For Your App's Dependencies 🪱Project mention: Running Eleventy Serverless On AWS [email protected] | dev.to | 2023-03-03
Kraken: A multi-platform distributed brute-force password cracking system (by arcaneiceman)
A happy heap editor to support your exploitation process :slightly_smiling_face:
An inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.
Gotanda is browser Web Extension for OSINT.
An eslint plugin to find strings that might be secrets/credentialsProject mention: Show HN: No Secrets Quickly find sensitive files in your GitHub repo | news.ycombinator.com | 2022-05-28
For people in the JS ecosystem theres this eslint rule: https://github.com/nickdeis/eslint-plugin-no-secrets
Modron - Cloud security complianceProject mention: Show HN: Scale Up Your Cloud Security and Remediation with Modron | news.ycombinator.com | 2023-01-15
Security Snapshot Testing Inside Your Jest Test Suite 🪱Project mention: Security Snapshot Testing Inside Your Jest Test Suite | reddit.com/r/cybersecurity | 2022-10-20
A fast, simple and powerful open-source utility tool for generating strong, unique and random passwords. Password Generator is free to use as a secure password generator on any computer, phone, or tablet. (by sebastienrousseau)Project mention: password-generator: Herramienta rápida y potente de código abierto para generar contraseñas fuertes, únicas y aleatoria 🔐 | reddit.com/r/u_esgeeks | 2022-04-21
A simple JS source code obfuscator/minifier that doesn't hurt consistency or speed.
A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice CybersecurityProject mention: applied-security: A collection of publicly available resources on how technology and tech-savvy organizations around the world practice Cybersecurity. | reddit.com/r/CKsTechNews | 2022-11-07
Yes, you can use it for security by locking down which dependencies can execute which methods in your app. But you can also use it for auditing and documenting your app's supply chain security profile, then snapshot testing against that using the Jest and Mocha plugins.
Secure SSH Agent proxy for linux/mac desktop environment.
Protect yourself online.
nginx proxy manager, v3: is someone testing/using it? Experiences?
3 projects | reddit.com/r/nginxproxymanager | 2 Mar 2023
4 projects | dev.to | 16 Jan 2023
Are ASM tools worth it?
1 project | reddit.com/r/cybersecurity | 9 Nov 2022
Packj sandbox for “safe installation” of Ruby gems
2 projects | reddit.com/r/ruby | 1 Sep 2022
List of public / known Ethereum addresses?
1 project | reddit.com/r/ethtrader | 25 Jun 2022
Open source projects from Nepal
1 project | reddit.com/r/technepal | 4 Dec 2021
A technical tale of NodeSecure - Chapter 1
5 projects | dev.to | 22 Nov 2021
A note from our sponsor - Sonar
www.sonarsource.com | 31 Mar 2023