Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀. Learn more →
Top 20 Shell security-tool Projects
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.Project mention: Linux security | reddit.com/r/sysadmin | 2022-09-16
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.Project mention: Using Prowler to Audit your AWS account for vulnerabilities. | dev.to | 2022-05-05
Few days ago I came across this repository and I found Prowler(Go Star the repo).
Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.
Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 240 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.Project mention: Opensource equivalent of Sailpoint | reddit.com/r/sysadmin | 2022-09-25
You’re not going to find a shiny enterprise web ui for free but there are tools out there. If you just want to review AWS accounts, you can use prowler https://github.com/prowler-cloud/prowler
Attack Surface Management Platform | Sn1perSecurity LLCProject mention: Are there any good automated attack tools besides Pentera? | reddit.com/r/cybersecurity | 2022-05-10
Linux privilege escalation auditing tool
Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)Project mention: Does Google want thieves to unlock Android devices? | reddit.com/r/AndroidQuestions | 2022-08-18
There are only 10,000 possible 4-digit PIN codes. We can assume that it would take around 40 seconds for someone to try 5 of them. That means it would take 80,000 seconds to try all 10,000. That's 1,333 minutes or 22 hours of non-stop brute-forcing, and there are tools like this one to automate the process.
Security automation content in SCAP, Bash, Ansible, and other formats (by ComplianceAsCode)Project mention: Ansible for automation/ hardening. | reddit.com/r/ansible | 2022-08-10
Download talent.io’s Tech Salary Report. Median salaries, most in-demand technologies, state of the remote work... all you need to know your worth on the market by tech recruitment platform talent.io
EMBA - The firmware security analyzerProject mention: OFRAK (Open Firmware Reverse Analysis Konsole): a recently released new tool for analysing embedded firmware | reddit.com/r/ReverseEngineering | 2022-08-11
grep rough audit - source code auditing toolProject mention: Source Code Review Resources for Beginners | reddit.com/r/cybersecurity_help | 2022-07-20
Hardening Ubuntu. Systemd edition.
A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.Project mention: Some information and advice about DDoS, from someone who was there during #opPayback | reddit.com/r/anonymous | 2022-02-27
A toolbox to get the firsts configurations of Proxmox VE / BS done in no timeProject mention: Whats my next server? | reddit.com/r/homelab | 2022-09-15
Various scripts for macOS tasksProject mention: Is there a way to automatically delete all my 32-bit (non-compatible) apps on my new MacBook? | reddit.com/r/mac | 2022-08-29
Otherwise, you could look into running a shell script that could do this for you. I’m pretty sure its possible, but i have no experience with it. I Googled this one for you: https://github.com/0xmachos/macos-scripts it has a script that seems to be able to detect 32bits application.
Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.Project mention: What vulnerability management tool for modern DevSecOps? | reddit.com/r/devsecops | 2022-08-01
Check Mixeway https://github.com/Mixeway/MixewayHub - vuln management, scanner management (multiple scanners managed from single dashboard) beta AI for classification and easy CICD integrations
ADAT is a small tool used to assist CTF players and Penetration testers with easy commands to run against an Active Directory Domain Controller. This tool is is best utilized using a set of known credentials against the host.Project mention: A tool to help with Active Directory and Windows | reddit.com/r/oscp | 2022-06-19
Bash script which quickly identifies open network ports and any associated vulnerabilities / Script Bash qui permet d'identifier rapidement les ports réseaux ouverts et les éventuelles vulnérabilités associées.
Cool Stuff I find or Create for FlipperzeroProject mention: Wrote my first Mac/Flipper Ducky Script 🦆🐬 It captures image in photo booth, opens gmail, and sends image to pre defined email address | reddit.com/r/flipperzero | 2022-09-03
Nice! Check out mine https://github.com/nwhistler/flipper-tools/tree/master/badusb/MacOS
Asymmetric encryption of the Clip Board to secure it with CSS(Copy Securely Secrets) with RSA encryption/decryption algorithms. (by Sanix-Darker)
A simple GitHub Action for AWS CloudFormation static code analysis to improve infrastructure-as-code security.
Enhance your malware detection with WAF + YARA (WAFARAY)Project mention: Enhance your malware detection with WAF + YARA (WAFARAY) | reddit.com/r/netsec | 2022-09-27
Build time-series-based applications quickly and at scale.. InfluxDB is the Time Series Data Platform where developers build real-time applications for analytics, IoT and cloud-native services in less time with less code.
Shell security-tools related posts
Enhance your malware detection with WAF + YARA (WAFARAY)
2 projects | reddit.com/r/netsec | 27 Sep 2022
Opensource equivalent of Sailpoint
1 project | reddit.com/r/sysadmin | 25 Sep 2022
Whats my next server?
1 project | reddit.com/r/homelab | 15 Sep 2022
Plex transcode performance on TrueNAS SCALE
1 project | reddit.com/r/truenas | 4 Sep 2022
Does Google want thieves to unlock Android devices?
1 project | reddit.com/r/AndroidQuestions | 18 Aug 2022
EMBA Firmware analyzer version 1.1.0 aka Las Vegas Edt. is out now - a lot of new features including system emulation environment, status bar and Ubuntu support
1 project | reddit.com/r/netsec | 3 Aug 2022
A tool to help with Active Directory and Windows
1 project | reddit.com/r/oscp | 19 Jun 2022
A note from our sponsor - Scout APM
scoutapm.com | 1 Oct 2022
What are some of the best open-source security-tool projects in Shell? This list will help you:
Are you hiring? Post a new remote job listing for free.