Information Security
Semgrep Semgrep is a command-line tool for offline static analysis. Use pre-built or custom rules to enforce code and security standards in your codebase. You can try it now with our interactive live editor. Semgrep combines the...
nuclei Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use. It is used to send requests across targets based on a template leading to...
Sifter Sifter is an osint, recon & vulnerability scanner. It combines a plethora of tools within different module sets in order to quickly perform recon tasks, check network firewalling, enumerate remote and local hosts,...
FUSE FUSE is a penetration testing system designed to identify Unrestricted Executable File Upload (UEFU) vulnerabilities. The details of the testing strategy is in our paper, “FUSE: Finding File Upload Bugs via Penetration Testing”, which...
CodeCat – Tool to help in static code analysis CodeCat is an open-source tool to help you in static code analysis, to find/track sinks and bugs, these points follow regex rules. Current rules for...
Eclipse Steady (Incubator Project) Discover, assess and mitigate known vulnerabilities in your Java and Python projects Eclipse Steady supports software development organizations in regard to the secure use of open-source components during application development....
JVMXRay JVMXRay is a technology for monitoring access to system resources within the Java Virtual Machine. It’s designed with application security emphasis but some will also find it beneficial for software quality processes and...
kubesec Security risk analysis for Kubernetes resources Changelog v2.5 62b2399 Merge pull request #102 from SantiagoTorres/fix-in-toto fb232fd ENH: pkg:ruler/ruleset: fix review comments 22f5363 ENH: in-toto: ensure signatures are cross-platform Download Kubesec Kubesec is available as a: Docker container image...
Scout Suite is a multi-cloud security auditing tool, which enables assessing the security posture of cloud environments. Using the APIs exposed by cloud providers, Scout gathers configuration data for manual inspection and highlights risk...
ScanT3r – Web Security Scanner Detect these vulnerabilities Remote Code Execution Linux XSS Reflected Template Injection Jinja2 ERB Java Twig Freemarker SQl Injection OS Support : Linux Android Windows Download git clone https://github.com/knassar702/scant3r.git cd...
