Open-source projects categorized as security-tools

Top 23 security-tool Open-Source Projects

  • GitHub repo lynis

    Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

    Project mention: What is system hardening? | reddit.com/r/Linuxadministrators | 2021-04-15

    Use a security tool like Lynis to perform a regular audit of your system. Any findings are showed on the screen and also stored in a data file for further analysis. With an extensive log file, it allows to use all available data and plan next actions for further system hardening.

  • GitHub repo trivy

    A Simple and Comprehensive Vulnerability Scanner for Container Images, Git Repositories and Filesystems. Suitable for CI

    Project mention: How can I scan containers from a Security standpoint? | reddit.com/r/kubernetes | 2021-03-16
  • GitHub repo scapy

    Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.

    Project mention: What are some commonly used python libraries for hacking? | reddit.com/r/hacking | 2021-02-26

    Recently used Scapy during a pentest to create custom packets to test how a device responded. Can’t say I enjoyed my time with it nor was the documentation very good, but it worked for what we needed.

  • GitHub repo Brakeman

    A static analysis security vulnerability scanner for Ruby on Rails applications

    Project mention: 26 most popular Ruby/Rails repositories on GitHub in July-August 2020 | dev.to | 2020-09-05

    Brakeman is a static analysis tool that checks Ruby on Rails applications for security vulnerabilities. 5,800 stars by now

  • GitHub repo Fail2Ban

    Daemon to ban hosts that cause multiple authentication errors

    Project mention: I love Flask | reddit.com/r/flask | 2021-03-21

    Depending on how you're planning to deploy your Flask app, you could possibly install fail2ban, tell it to watch the Flask log location, and create custom rules for when someone should be banned.

  • GitHub repo my-arsenal-of-aws-security-tools

    List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

    Project mention: We launched a free cloud security and compliance tool | reddit.com/r/devops | 2021-01-14

    Tons of great stuff here too: https://github.com/toniblyx/my-arsenal-of-aws-security-tools

  • GitHub repo monkey

    Infection Monkey - An automated pentest tool

    Project mention: Infection Monkey is a free open-source, network penetration testing tool. It is a breach and attack simulator that uses real-world attack techniques and known vulnerabilities. Evaluating your security is easy with Infection Monkey and takes 3 simple steps. | reddit.com/r/cybersecurity | 2021-04-11
  • GitHub repo awesome-test-automation

    A curated list of awesome test automation frameworks, tools, libraries, and software for different programming languages. Sponsored by http://sdclabs.com

    Project mention: Testing | dev.to | 2021-01-19

    For large projects, simple assert statements aren't enough to adequately write and manage tests. You'll require built-in module unittest or popular third-party modules like pytest. See python test automation frameworks for more resources.

  • GitHub repo gosec

    Golang security checker

    Project mention: Dependency management tools | reddit.com/r/golang | 2021-04-10

    Sounds like you're looking for gosec

  • GitHub repo RustScan

    🤖 The Modern Port Scanner 🤖 (by RustScan)

    Project mention: How do I automate recon for 450+ hosts? Sn1per alternatives | reddit.com/r/AskNetsec | 2021-01-28

    Also checkout https://github.com/RustScan/RustScan (possibly combined with something like https://github.com/vulnersCom/nmap-vulners) if you don't need a web interface.

  • GitHub repo Modlishka

    Modlishka. Reverse Proxy.

    Project mention: Azure MFA | reddit.com/r/AZURE | 2021-04-14

    Step 1. The user becomes a victim of an advanced phishing attack with MFA phishing included, so the attacker's phishing script logs in using both password and MFA code. Step 2. The attacker uses the session cookie to impersonate the victim. Step 3 is the same as with Option A.

  • GitHub repo bandit

    Bandit is a tool designed to find common security issues in Python code.

    Project mention: Python code review checklist | dev.to | 2021-03-30

    One of the renowned security analyzers for Python is Bandit. Also, if you use GitHub for hosting code, you should absolutely read this guide about setting up vulnerability detection and Dependabot for your codebase.

  • GitHub repo Osmedeus

    Fully automated offensive security framework for reconnaissance and vulnerability scanning

    Project mention: How do I automate recon for 450+ hosts? Sn1per alternatives | reddit.com/r/AskNetsec | 2021-01-28

    I've used https://github.com/yogeshojha/rengine and https://github.com/j3ssie/Osmedeus with great success.

  • GitHub repo certificates

    🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

    Project mention: How to handle secrets in the CLI | reddit.com/r/linux | 2021-04-14
  • GitHub repo rengine

    reNgine is a reconnaissance engine(framework) that does end-to-end reconnaissance with the help of highly configurable scan engines and does information gathering about the target web application. reNgine makes use of various open-source tools and makes a configurable pipeline of reconnaissance.

  • GitHub repo linux-exploit-suggester

    Linux privilege escalation auditing tool

  • GitHub repo Cameradar

    Cameradar hacks its way into RTSP videosurveillance cameras

  • GitHub repo bundler-audit

    Patch-level verification for Bundler

  • GitHub repo StegCloak

    Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐ (by KuroLabs)

  • GitHub repo personal-security-checklist

    🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021

    Project mention: A curated checklist of 300+ tips for protecting digital security and privacy in 2021 | reddit.com/r/privacy | 2021-03-30
  • GitHub repo IntelOwl

    Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

    Project mention: [FOSS] IntelOwl v2.3.0 is out! | reddit.com/r/netsec | 2021-04-15
  • GitHub repo cli

    🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc. (by smallstep)

    Project mention: Recommend: Linux-Equivalent Tool of mkcert | reddit.com/r/voidlinux | 2021-03-25

    https://github.com/smallstep/cli may be a bit overkill for your needs, but it's an epic toolkit and well worth checking out!

  • GitHub repo Reconnoitre

    A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

    Project mention: oscp and ctf bash script fro recon help | reddit.com/r/cybersecurity | 2020-12-24
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2021-04-15.


What are some of the best open-source security-tool projects? This list will help you:

Project Stars
1 lynis 8,339
2 trivy 6,935
3 scapy 6,159
4 Brakeman 6,066
5 Fail2Ban 5,990
6 my-arsenal-of-aws-security-tools 5,819
7 monkey 5,110
8 awesome-test-automation 4,268
9 gosec 4,153
10 RustScan 3,801
11 Modlishka 3,276
12 bandit 3,121
13 Osmedeus 3,018
14 certificates 2,969
15 rengine 2,716
16 linux-exploit-suggester 2,548
17 Cameradar 2,525
18 bundler-audit 2,289
19 StegCloak 2,077
20 personal-security-checklist 1,818
21 IntelOwl 1,787
22 cli 1,710
23 Reconnoitre 1,685