Search Results for "security tools" - Page 3
Sort By:
Showing 306 open source projects for "security tools"
View related business solutions-
Gemini 3 and 200+ AI Models on One PlatformBuild, govern, and optimize agents and models with Gemini Enterprise Agent Platform.
-
Try Google Cloud Risk-Free With $300 in CreditUse your credit across every product. Compute, storage, AI, analytics. When it runs out, 20+ products stay free. You only pay when you choose to.
-
1
react2shell-scanner
High Fidelity Detection Mechanism for RSC/Next.js RCE
react2shell-scanner is a security-oriented tool that bridges modern JavaScript (React) applications and shell scripting by auditing web front-ends for exposed interfaces that could be manipulated or controlled through command execution. It scans React codebases, identifies places where user input interacts with shell-executable contexts, and flags risky patterns that might lead to command injection, unvalidated arguments, or unsafe bindings between UI controls and underlying system actions.... -
2
testssl.sh
Testing TLS/SSL encryption anywhere on any port
testssl.sh is a free command-line tool that checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more. testssl.sh is free and open-source software. You can use it under the terms of GPLv2, please review the License before using it. Works for Linux, Mac OSX, FreeBSD, NetBSD and WSL/MSYS2/Cygwin out of the box, no need to install or configure something, no gems, CPAN, pip or the like. OpenBSD only needs bash to be... -
3
Deckhouse
Kubernetes platform from Flant
Deckhouse is a Kubernetes platform that allows you to create homogeneous K8s clusters on any infrastructure. It manages clusters comprehensively and “automagically” and provides all necessary modules and add-ons for autoscaling, observability, security, and service mesh implementation. Deckhouse has vanilla Kubernetes under the hood and integrates a balanced set of Open Source tools that have become the industry standard. Out-of-the-box secure configuration of the Kubernetes cluster, least component privileges, pre-configured role model, end-to-end object identity in the audit system, and integration with external directory services. ... -
4
Application Inspector
A source code analyzer built for surfacing features of interest
...Application Inspector is different from traditional static analysis tools in that it doesn't attempt to identify "good" or "bad" patterns; it simply reports what it finds against a set of over 400 rule patterns for feature detection including features that impact security. -
Compliant and Reliable File Transfers Backed by Top Security CertificationsStop relying on non-certified, legacy file transfer tools that creak under the weight of modern security demands. Get full audit trails, advanced access controls and more supported by an award-winning team of experts. Start your free 25-day trial today.
-
5
NPMplus
improved fork of nginx-proxy-manager
NPMplus is an enhancement tool for the npm ecosystem, providing additional features for managing dependencies, optimizing installations, and improving package management workflows. -
6
CDK
Make security testing of K8s, Docker, and Containerd easier
CDK is an open-sourced container penetration toolkit, designed for offering stable exploitation in different slimmed containers without any OS dependency. It comes with useful net-tools and many powerful PoCs/EXPs and helps you to escape container and take over K8s cluster easily. -
7
Mattermost
Mattermost is an open source platform for secure collaboration
...Keep everyone on the same page while prototyping your latest innovation, or simply planning sprints or managing production incidents. Execute and automate workflows with flexible, custom integrations with popular technical tools like GitHub, GitLab and ServiceNow. Seamlessly switch from chat to audio calls and screenshare without switching tools. Checklist-based process playbooks with workflow orchestration in one unified location. Orchestrate and execute repeatable processes with better command. Accelerate productivity and reduce risk without sacrificing security. -
8
Brim
Application to efficiently search and analyze super-structured data
...Inspired by the Unix-tools design pattern, everything Brim does can be run from the command line. Think of Brim's components like Lego blocks that you can easily interconnect and assemble. It’s all open source, so have a look. -
9
Marked
A markdown parser and compiler. Built for speed
A low-level markdown compiler for parsing markdown without caching or blocking for long periods of time. Light-weight while implementing all markdown features from the supported flavors & specifications. Available as a command-line interface (CLI) and running in client- or server-side JavaScript projects. The only completely secure system is the one that doesn't exist in the first place. Having said that, we take the security of Marked very seriously. To prevent ReDoS attacks you can run... -
Build Securely on Azure with Proven FrameworksMoving to the cloud brings new challenges. How can you manage a larger attack surface while ensuring great network performance? Turn to Fortinet’s Tested Reference Architectures, blueprints for designing and securing cloud environments built by cybersecurity experts. Learn more and explore use cases in this white paper.
-
10
gVisor
Application Kernel for Containers
...Written in Go, it implements a Linux-compatible system call interface that runs entirely in user space, creating a secure sandboxed environment for containers. Unlike traditional virtual machines or lightweight syscall filters, gVisor follows a third approach that offers many of the security benefits of virtualization while maintaining the speed, resource efficiency, and flexibility of containers. Its key runtime, runsc, integrates seamlessly with container ecosystems such as Docker and Kubernetes, making it easy to deploy sandboxed workloads using familiar tools. By intercepting and safely handling syscalls from applications, gVisor reduces the attack surface of the host kernel, mitigating risks associated with running untrusted or potentially malicious code in containerized environments. -
11
Smarty
Smarty is a template engine for PHP
Smarty is a robust and widely-used templating engine for PHP that separates logic from presentation. It allows developers to create clean, maintainable, and reusable templates using its simple syntax. Smarty supports features like caching, custom plugins, and template inheritance, making it suitable for both small and complex applications that require flexible and efficient frontend rendering. -
12
Toolbx Linux
Tool for interactive command line environments on Linux
Toolbx is a tool for Linux, which allows the use of interactive command line environments for development and troubleshooting the host operating system, without having to install software on the host. It is built on top of Podman and other standard container technologies from OCI. Toolbx environments have seamless access to the user's home directory, the Wayland and X11 sockets, networking (including Avahi), removable devices (like USB sticks), systemd journal, SSH agent, D-Bus, limits, /dev... -
13
Claude Code Templates
CLI tool for configuring and monitoring Claude Code
Claude Code Templates is a popular open-source CLI tool and template ecosystem designed to streamline how developers work with Anthropic’s Claude Code by providing a rich catalog of ready-to-use code templates, AI agents, custom commands, settings, hooks, and external integrations that can be installed interactively or via the command line. It lets you quickly scaffold domain-specific AI agents (like security auditors, performance optimizers, or database architects), fill in consistent... -
14
Amazon SSM Agent
An agent to enable remote management of your EC2 instances
...Aggregate data in a single console and gain actionable insights across AWS services such as Amazon CloudWatch, AWS CloudTrail, and AWS Config, as well as third-party tools. Leverage operational data to easily manage applications and identify issues quickly across associated AWS resource groups. Automate proactive processes such as patching and resource changes, as well as reactive processes, to quickly diagnose and remediate operational issues before they affect users. Adapt your security and compliance profile and analyze security events after the fact to prevent a future reoccurrence. ... -
15
Monokle
Better create, understand, and deploy YAML manifests
Monokle's integrated open-source tools and cloud platform make it easy to define, manage, and enforce Kubernetes YAML configuration policies in minutes. Deploy, manage and audit policies for your teams across the entire configuration lifecycle from a centralized Dashboard. Define polices using 100+ pre-existing rules for Security, Resource Usage, and Compliance. Create your own Validation Extensions for your organization's compliance and conventions. -
16
agent-browser
Browser automation CLI for AI agents
agent-browser is a toolkit that embeds AI agent capabilities directly into the web browser, enabling agents to interact with web content, scripts, and user actions while maintaining security boundaries that respect user privacy and browser constraints. It effectively provides a sandbox where AI agents can read, scroll, click, and interpret pages in context, allowing them to automate workflows, answer questions about page content, or generate structured summaries directly from the user’s... -
17
Tencent Cloud Code Analysis
Static code analysis
Tencent Cloud Code Analysis (TCA for short, used internally by the R&D code CodeDog ) is a cloud-native, distributed, high-performance comprehensive code analysis and tracking platform that integrates many analysis tools, including server, web and client The three components have integrated a number of self-developed tools, and also support the dynamic integration of analysis tools of various programming languages in the industry. Obtain the Tencent Cloud code analysis platform by... -
18
agentOS
A portable open-source operating system for agents. ~6 ms coldstarts
agentOS is a portable, open-source runtime environment designed specifically for executing AI agents efficiently, acting as a lightweight operating system tailored for agent-based workloads. It is built using WebAssembly and V8 isolates to provide secure, sandboxed execution without the overhead of traditional containers or virtual machines. The system is optimized for extremely fast startup times, with near-instant cold starts that allow agents to be created and executed in milliseconds.... -
19
gosec
Golang security checker
A project devoted to secure programming in the Go language. Licensed under the Apache License, Version 2.0 (the "License"). You may not use this file except in compliance with the License. You can integrate third-party code analysis tools with GitHub code scanning by uploading data as SARIF files. The workflow shows an example of running the gosec as a step in a GitHub action workflow that outputs the results.sarif file. The workflow then uploads the results.sarif file to GitHub using the... -
20
Standard Webhooks
The Standard Webhooks specification
...Standard Webhooks matters because it eliminates the fragmentation of webhook implementations, reducing consumer effort and enabling seamless verification in apps or even directly in API gateways. By unifying best practices, it improves developer experience, enhances security, and enables new ecosystem tools. -
21
MIDWAY
Serverless Framework for front-end/full-stack developers
A Node.js serverless framework for front-end/full-stack developers. Build the application for next decade. Works on AWS, Alibaba Cloud, Tencent Cloud, and traditional VM/Container. Super easy integrate with React and Vue. There are many similar frameworks in the community, so why do you need Midway? Midway is a framework that Alibaba has been developing continuously. Before egg was used as the underlying framework, an application-oriented framework was required to connect with the group's... -
22
Bedrock
WordPress boilerplate with modern development tools
WordPress boilerplate with modern development tools, easier configuration, and an improved folder structure. Bedrock is an open source project and completely free to use. Bedrock is a modern WordPress stack that helps you get started with the best development tools and project structure. Much of the philosophy behind Bedrock is inspired by the Twelve-Factor App methodology including the WordPress specific version. Bedrock is multisite network compatible, but needs the... -
23
LinuxKit
A toolkit for building secure, portable and lean operating systems
...Designed from the experience of building Docker Editions, but redesigned as a general-purpose toolkit. Designed to be managed by external tooling, such as Infrakit (renamed to deploykit which has been archived in 2019) or similar tools. Includes a set of longer-term collaborative projects in various stages of development to innovate on kernel and userspace changes, particularly around security. -
24
CodiumAI PR-Agent
AI-Powered tool for automated pull request analysis
CodiumAI PR-Agent is an open-source tool aiming to help developers review pull requests faster and more efficiently. It automatically analyzes the pull request and can provide several types of commands. See the Usage Guide for instructions how to run the different tools from CLI, online usage, Or by automatically triggering them when a new PR is opened. You can try GPT-4 powered PR-Agent, on your public GitHub repository, instantly. Just mention @CodiumAI-Agent and add the desired command in... -
25
OpenShell
OpenShell is the safe, private runtime for autonomous AI agents.
OpenShell is an open-source runtime designed to safely run autonomous AI agents in isolated environments. Developed by NVIDIA, it provides sandboxed execution spaces that protect system resources, credentials, and data from unauthorized access. Each agent runs inside a containerized sandbox governed by declarative YAML security policies that control network access, file permissions, and process behavior. The platform includes a gateway service that manages sandbox lifecycles and routes AI...
