KubeStalk KubeStalk is a tool to discover Kubernetes and related infrastructure-based attack surfaces from a black-box perspective. This tool is a community version of the tool used to probe for unsecured Kubernetes clusters around...
Vulnerability Analysis / Web Vulnerability Analysis
by do son · Published December 20, 2022 · Last modified December 6, 2023
OSV-Scanner Use OSV-Scanner to find existing vulnerabilities affecting your project’s dependencies. OSV-Scanner provides an officially supported frontend to the OSV database that connects a project’s list of dependencies with the vulnerabilities that affect them. Since...
SEVulDet SEVulDet is a semantics-enhanced deep learning-based framework that can accurately pinpoint vulnerability patterns by extracting, preserving, and learning more semantics. Details of SEVulDet Recent years have seen increased attention to deep learning-based vulnerability...
MATE MATE is a suite of tools for interactive program analysis with a focus on hunting for bugs in C and C++ code. MATE unifies application-specific and low-level vulnerability analysis using code property graphs...
monkey365 Monkey365 is an Open Source security tool that can be used to easily conduct not only Microsoft 365 but also Azure subscriptions and Azure Active Directory security configuration reviews without the significant overhead...
Defense / Vulnerability Analysis
by do son · Published September 16, 2022 · Last modified November 30, 2023
kubeeye KubeEye is an audit tool for Kubernetes to discover Kubernetes resources (by OPA ), cluster components, cluster nodes (by Node-Problem-Detector), and other configurations that are meeting with best practices and giving suggestions for modification. KubeEye supports...
bomber bomber is an application that scans SBoMs for security vulnerabilities. Overview So you’ve asked a vendor for an Software Bill of Materials (SBOM) for one of their products, and they provided one to...
Route Sixty-Sink Route Sixty-Sink is an open source tool that enables defenders and security researchers alike to quickly identify vulnerabilities in any .NET assembly using automated source-to-sink analysis. Identifying vulnerabilities within application binaries or source...
riskscanner RiskScanner is an open-source multi-cloud security compliance scanning platform, Based on Cloud Custodian, Prowler, and Nuclei engines, it realizes security compliance scanning and vulnerability scanning of mainstream public (private) cloud resources. Functional advantage...
Defense / Vulnerability Analysis
by do son · Published August 14, 2022 · Last modified July 26, 2023
veinmind-tools veinmind-tools is self-developed by chaitin technology, a container security toolset based on veinmind-sdk. Toolset veinmind-runner veinmind-runner it’s a container security host developed by Chaitin Technology. With the background of rich R&D experience, the...
Vulnerability Analysis / Web Vulnerability Analysis
by do son · Published July 26, 2022 · Last modified October 25, 2022
Packj flags malicious/risky open-source packages Packj (pronounced package) is a command-line (CLI) tool to vet open-source software packages for “risky” attributes that make them vulnerable to supply chain attacks. This is the tool behind...
bpflock – Lock Linux machines bpflock – eBPF driven security for locking and auditing Linux machines. Note: bpflock is currently in the experimental stage, it may break, options and security semantics may change, and...
kubeaudit kubeaudit is a command-line tool and a Go package to audit Kubernetes clusters for various different security concerns, such as: run as non-root use a read-only root filesystem drop scary capabilities, don’t add new...
mx-takeover mx-takeover focuses on DNS MX records and detects misconfigured MX records. It currently supports three-technique. These are, MX domains that will expire soon Unregistered MX domains Domains that point to not currently in...
Vulnerability Analysis / Web Vulnerability Analysis
by do son · Published June 21, 2022 · Last modified January 2, 2024
chain-bench Chain-bench is an open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark. The auditing focuses on the entire SDLC process, where...
Secure Your Connection
