misconfiguration

Open-source projects categorized as misconfiguration
Language: + Go + Shell

Top 6 misconfiguration Open-Source Projects

misconfiguration
  • trivy

    Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

  • Project mention: Cloud Security and Resilience: DevSecOps Tools and Practices | dev.to | 2024-05-01

    4. Trivy: https://github.com/aquasecurity/trivy Trivy is a versatile tool that scans for vulnerabilities in your containers, and also checks for vulnerabilities in your application dependencies.

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
  • tfsec

    Security scanner for your Terraform code

  • Project mention: Cloud Security and Resilience: DevSecOps Tools and Practices | dev.to | 2024-05-01

    3. tfsec: https://github.com/aquasecurity/tfsec tfsec uses a suite of security checks to scan your Terraform templates, helping to identify potential security issues before infrastructure is deployed.

  • SUDO_KILLER

    A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

  • trivy-operator

    Kubernetes-native security toolkit

  • stunner

    Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.

  • chain-bench

    An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

misconfiguration discussion

Log in or Post with

misconfiguration related posts

  • Stunner – tool to test and exploit STUN, TURN and TURN over TCP servers

    1 project | news.ycombinator.com | 25 Apr 2022
  • Stunner - tool to test and exploit STUN, TURN and TURN over TCP servers.

    1 project | /r/github_trends | 25 Apr 2022
  • New tool to exploit TURN servers - create a socks proxy into the internal network

    2 projects | /r/netsec | 15 Apr 2022
  • stunner: Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers. If you find a misconfigured server you can use this tool to open a local socks proxy that relays all traffic via the TURN protocol into the internal network behind the server.

    1 project | /r/blueteamsec | 16 Apr 2022

Index

What are some of the best open-source misconfiguration projects? This list will help you:

Project Stars
1 trivy 21,804
2 tfsec 6,609
3 SUDO_KILLER 2,123
4 trivy-operator 1,089
5 stunner 722
6 chain-bench 708

Sponsored
Power Real-Time Data Analytics at Scale
Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
www.influxdata.com