Top 23 Audit Open-Source Projects

• lighthouse

  152 27,823 9.5 JavaScript

  Automated auditing, performance metrics, and best practices for the web.

  

Project mention: Top 20 Frontend Interview Questions With Answers | dev.to | 2024-02-03

Google Core Vitals now represent the most important metrics to focus on when it comes to technical SEO. Google Core Vitals are a set of standardized metrics that Google uses to evaluate the user experience offered by a web page and assign it a technical SEO grade. Several tools exist to measure and report technical SEO performance, but the most reliable is Google Lighthouse.

• Gravitational Teleport

  61 16,543 10.0 Go

  The easiest, and most secure way to access and protect all of your infrastructure.

  

Project mention: Apache Guacamole: a clientless remote desktop gateway | news.ycombinator.com | 2024-03-29

https://github.com/gravitational/teleport/blob/master/rfd/00...

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• PaperTrail

  18 6,697 5.9 Ruby

  Track changes to your rails models

  

Project mention: historical data and "point in time" data modeling techniques, advice. | /r/dataengineering | 2023-06-28

if the source (web) application makes their own audit tables. ex: our ruby on rails application uses the paper-trail gem

• Rundeck

  26 5,311 9.9 Groovy

  Enable Self-Service Operations: Give specific users access to your existing tools, services, and scripts

  

• laravel-activitylog

  4 5,140 6.5 PHP

  Log activity inside your Laravel app

  

Project mention: similar bundle / approach to laravel-activitylog | /r/symfony | 2023-05-10

in laravel this seems good: https://github.com/spatie/laravel-activitylog

• aircrack-ng

  5 4,794 8.7 C

  WiFi security auditing tools suite

Project mention: Official /r/rust "Who's Hiring" thread for job-seekers and job-offerers [Rust 1.70] | /r/rust | 2023-06-03

I contribute to open-source WiFi cybersecurity related projects such as aircrack-ng and hcxdumptool. Besides that, embedded systems are close to my heart so I always work on some STM32 or ESP32 based side project. Some of them are available on GitHub:

• Amphion

  4 3,898 8.7 Python

  Amphion (/æmˈfaɪən/) is a toolkit for Audio, Music, and Speech Generation. Its purpose is to support reproducible research and help junior researchers and engineers get started in the field of audio, music, and speech generation research and development.

  

Project mention: FLaNK Stack Weekly 11 Dec 2023 | dev.to | 2023-12-11

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• arachni

  2 3,639 1.5 Ruby

  Web Application Security Scanner Framework

  

Project mention: Self-Host Vulnerability Scanner | /r/selfhosted | 2023-07-09

• Audited

  6 3,312 6.8 Ruby

  Audited (formerly acts_as_audited) is an ORM extension that logs all changes to your Rails models.

  

• polaris

  11 3,085 7.2 Go

  Validation of best practices in your Kubernetes clusters (by FairwindsOps)

  

• black-hat-rust

  48 3,044 4.3 Rust

  Applied offensive security with Rust - https://kerkour.com/black-hat-rust

  

Project mention: Cloudflare for Speed and Security | /r/CloudFlare | 2023-10-20

Bonuses: If you purchase Cloudflare for Speed and Security before November 4, 2023, you'll get my bestseller, Black Hat Rust, for free! Yes, you read it right, two books for less than the price of one!

• laravel-auditing

  5 2,880 7.3 PHP

  Record the change log from models in Laravel

  

Project mention: Quem já contribuiu e quem já usou projectos open-source? | /r/devpt | 2023-06-30

• inspec

  13 2,813 9.4 Ruby

  InSpec: Auditing and Testing Framework

  

• Audit.NET

  6 2,178 9.2 C#

  An extensible framework to audit executing operations in .NET and .NET Core.

• windows_hardening

  14 2,153 7.4 PowerShell

  HardeningKitty and Windows Hardening settings and configurations

• pwndoc

  11 2,026 4.4 JavaScript

  Pentest Report Generator

  

Project mention: sysreptor alternatives - writehat, Serpico, ReportGen, and pwndoc | libhunt.com/r/sysreptor | 2023-05-02

• owasp-masvs

  10 1,945 5.6 Python

  The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

  

Project mention: More ways to identify independently security tested apps on Google Play | news.ycombinator.com | 2023-11-03

https://github.com/OWASP/owasp-masvs :

> The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

• kubeaudit

  7 1,837 3.8 Go

  kubeaudit helps you audit your Kubernetes clusters against common security controls

  

• pgaudit

  5 1,183 5.0 C

  PostgreSQL Audit Extension

  

Project mention: Show HN: I built this Postgres logger for you guys to check out | news.ycombinator.com | 2023-08-24

I think pgAudit it still the best and it's not a major issue. You can try my PR that fixes this issue https://github.com/pgaudit/pgaudit/pull/219 it should work and it should handle the other types of SELECT's that need update permissions but are not actually updating anything https://pglocks.org/?pglock=RowShareLock

• HardeningKitty

  14 1,142 2.9 PowerShell

  HardeningKitty - Checks and hardens your Windows configuration

  

Project mention: If You Had To Create All IT Policies From Scratch | /r/sysadmin | 2023-06-29

Also Hardening-Kitty. https://github.com/scipag/HardeningKitty

• SysReptor

  3 1,117 9.8 Python

  Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.

  

Project mention: sysreptor alternatives - writehat, Serpico, ReportGen, and pwndoc | libhunt.com/r/sysreptor | 2023-05-02

• audit2rbac

  2 1,038 0.0 Go

  Autogenerate RBAC policies based on Kubernetes audit logs

• flashlight

  2 1,007 9.1 TypeScript

  📱⚡️ Lighthouse for Mobile - audits your app and gives a performance score to your Android apps (native, React Native, Flutter..). Measure performance on CLI, E2E tests, CI... (by bamlab)

  

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

Audit related posts

• Achivments for Git
  1 project | news.ycombinator.com | 9 Apr 2024
• Figure out who's leaving the company: dump, diff, repeat
  5 projects | news.ycombinator.com | 8 Feb 2024
• 5 Serverless Best Practices to Become a Skilled Cloud Architect
  1 project | dev.to | 6 Dec 2023
• Configure Authentication to your AWS account in your GitHub actions CI
  1 project | dev.to | 24 Nov 2023
• Learn serverless on AWS step-by-step: Lambda Destinations
  1 project | dev.to | 22 Nov 2023
• Learn serverless on AWS step-by-step: Master DynamoDB!
  3 projects | dev.to | 26 Oct 2023
• help needed with lighthouse ci for angular, github actions, PROTOCOL_TIMEOUT: (Method: Debugger.disable)
  3 projects | /r/devops | 15 Oct 2023
• A note from our sponsor - WorkOS
  workos.com | 25 Apr 2024

  The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com