Search Results for "security tools" - Page 2
Sort By:
Showing 204 open source projects for "security tools"
View related business solutions-
Gemini 3 and 200+ AI Models on One PlatformBuild, govern, and optimize agents and models with Gemini Enterprise Agent Platform.
-
Auth0 B2B Essentials: SSO, MFA, and RBAC Built InAuth0's B2B Essentials plan gives you everything you need to ship secure multi-tenant apps. Unlimited orgs, enterprise SSO, RBAC, audit log streaming, and higher auth and API limits included. Add on M2M tokens, enterprise MFA, or additional SSO connections as you scale.
-
1
Osmedeus Core Engine
A Workflow Engine for Offensive Security
Osmedeus is a Workflow Engine for Offensive Security. It was designed to build a foundation with the capability and flexibility that allows you to build your own reconnaissance system and run it on a large number of targets. Efficiently to customize and optimize your recon process. Seamlessly integrate with new public and private tools. Easy to synchronize the results across many places. -
2
Awesome Privacy
A curated list of privacy & security-focused software and services
Awesome Privacy is a curated directory of privacy-respecting alternatives to mainstream apps and services, organized across many categories like browsers, search, email, messaging, cloud storage, and operating systems. It aims to help you choose tools that reduce tracking, fingerprinting, and data collection without sacrificing usability. Each entry highlights the project’s core properties—such as open source status, end-to-end encryption, and platform availability—so you can evaluate... -
3
SonarQube
Continuous inspection
...Thousands of automated Static Code Analysis rules, protecting your app on multiple fronts, and guiding your team. Catch tricky bugs to prevent undefined behavior from impacting end-users. Fix vulnerabilities that compromise your app, and learn AppSec along the way with Security Hotspots. Make sure your codebase is clean and maintainable, to increase developer velocity! We embrace progress - whether it's multi-language applications, teams composed of different backgrounds or a workflow that's a mix of modern and legacy, SonarQube has you covered. SonarQube fits with your existing tools and pro-actively raises a hand when the quality or security of your codebase is at risk. ... -
4
ggshield
Detect and validate 500+ types of hardcoded secrets
GitGuardian’s ggshield is an open-source command-line interface (CLI) tool designed to help developers and security teams detect hardcoded secrets and sensitive credentials early in the development process, either locally or in CI/CD pipelines. It scans source code, configuration files, commit history, and other artifacts to automatically detect hundreds of different secret types — such as API keys, tokens, and passwords — helping prevent accidental leaks before they reach version control or... -
Compliant and Reliable File Transfers Backed by Top Security CertificationsStop relying on non-certified, legacy file transfer tools that creak under the weight of modern security demands. Get full audit trails, advanced access controls and more supported by an award-winning team of experts. Start your free 25-day trial today.
-
5
Retire.js
Scanner detecting the use of JavaScript libraries
...Scans visited sites for references to insecure libraries and puts warnings in the developer console. An icon on the address bar displays will also indicate if vulnerable libraries were loaded. Retire.js has been adapted as a plugin for the penetration testing tools Burp and OWASP ZAP. -
6
kubeaudit
kubeaudit helps you audit your Kubernetes clusters
kubeaudit helps you audit your Kubernetes clusters against common security controls. -
7
Batteries Included
The main Batteries Included repo
Welcome to Batteries Included—the ultimate platform for modern service development. Built on Kubernetes and open-source, our software platform gives you an incredible, all-inclusive infrastructure experience thanks to an intuitive UI and advanced automation. In this repo, you'll find everything you need to contribute to development. From code and scripts to documentation and information, this is the hub of all things Batteries Included. Batteries Included is a platform designed to simplify... -
8
Coder
Provision remote development environments via Terraform
Onboard developers to fully configured cloud development environments with Coder, the only open-source platform you can self-host and manage for complete security and control. Coder is an open-source cloud development environment (CDE) that you host in your cloud or on-premises. With Coder, you can deploy environments that provide the infrastructure, IDEs, and tools your developers need. Upgrade to Coder Premium to gain enhanced security, governance, and observability for your platform teams. -
9
LINKERD
Ultralight, security-first service mesh for Kubernetes
Enterprise power without enterprise complexity. Linkerd adds security, observability, and reliability to any Kubernetes cluster. 100% open source, CNCF graduated, and written in Rust. Instantly add latency-aware load balancing, request retries, timeouts, and blue-green deploys to keep your applications resilient. Incredibly small and blazing fast Linkerd2-proxy micro-proxy written in Rust for security and performance. -
8 Monitoring Tools in One APM. Install in 5 Minutes.AppSignal works out of the box for Ruby, Elixir, Node.js, Python, and more. 30-day free trial, no credit card required.
-
10
HestiaCP
Hestia Control Panel | A lightweight and powerful control panel
HestiaCP is an open-source web hosting control panel designed to manage web servers efficiently. It provides a simple and intuitive graphical interface to manage domains, web hosting, databases, email accounts, and other server-related tasks. HestiaCP is lightweight and based on the Vesta Control Panel but offers more modern features and improved security. It supports popular web servers like Nginx and Apache, making it suitable for personal and small business hosting environments. -
11
DevHub Application
A feature-rich offline application
A feature-rich offline application, carefully crafted to support developers' daily tasks and ensure the highest security for their data. I am actively developing it with a bold goal in mind: to release updates weekly. I strive to maintain a lean footprint, aiming to curate an extensive collection comprising over 100 utilities, providing developers with a diverse array of tools. This initiative reflects my commitment to continuous improvement, offering rich tools to empower developers. ... -
12
Erlang/OTP
Build massively scalable soft real-time systems
...OTP is set of Erlang libraries and design principles providing middle-ware to develop these systems. It includes its own distributed database, applications to interface towards other languages, debugging and release handling tools. Erlang/OTP is available as pre-built binary packages by most OS package managers. You can use Kerl, a script that lets you easily build Erlang with a few commands. We take security bugs in Erlang/OTP seriously. The Erlang distribution includes a step-by-step getting started guide. -
13
Professional Services
Common solutions and tools developed by Google Cloud
Professional Services repository is a collection of real-world solutions, tools, and reference implementations developed by Google Cloud’s Professional Services team to address common enterprise challenges. Unlike simple sample repositories, it focuses on production-oriented use cases such as data pipelines, machine learning workflows, infrastructure automation, and security management. The repository contains a wide variety of projects, including tools for validating data migrations, generating large datasets for testing, building analytics dashboards, and automating policy enforcement in cloud environments. ... -
14
Infosec Reference
An Information Security Reference That Doesn't Suck
Infosec Reference is a curated knowledge base and resource repository for information security practitioners. It aggregates cheat sheets, tooling guides, protocol deep dives, incident response playbooks, and threat actor profiles—all organized under accessible categories (network, web, host, cryptography, auditing). The repo is built as a living wiki of sorts: practitioners contribute updates, expand sections, or refine explanations as the threat landscape evolves. Because security spans... -
15
CodeIgniter 4
Open Source PHP Framework (originally from EllisLab)
CodeIgniter4 is a powerful PHP framework designed for building web applications. It is a next-generation version of the popular CodeIgniter framework, offering enhanced features and improved performance. CodeIgniter4 follows the MVC (Model-View-Controller) pattern and is built to be lightweight, with a focus on simplicity and speed. It comes with a rich set of libraries and tools for developing dynamic web applications. -
16
Tauri
Build smaller, faster, and more secure desktop applications
Tauri is an open-source framework for building lightweight and high-performance desktop and mobile applications using web technologies. It allows developers to create user interfaces with HTML, CSS, and JavaScript while using Rust for the backend logic. By leveraging the operating system’s native WebView instead of bundling a full browser, Tauri produces significantly smaller and more efficient application binaries. The framework supports multiple front-end frameworks such as React, Vue,... -
17
FOSSA CLI
Fast, portable and reliable dependency analysis for any codebase
FOSSA CLI is a command-line tool that scans your codebase to identify open-source dependencies and their associated licenses and vulnerabilities. It integrates into CI/CD pipelines to provide automated compliance checks, license audits, and security analysis. Designed for enterprise software teams, FOSSA CLI helps enforce open-source policies at scale and provides accurate, automated insights into third-party software usage through deep analysis of transitive dependencies and... -
18
JeeSite
A basic enterprise information development platform
...JeeSite is mainly positioned in the field of enterprise informatization. It has built-in basic functions of enterprise informatization system and efficient code generation tools. -
19
Capslock
Tool to remap Caps Lock key behavior on Windows systems
Capslock is a command-line tool for analyzing the capabilities of Go packages to reveal what privileged operations their code and dependencies can perform. Rather than detecting vulnerabilities, Capslock focuses on identifying capabilities — permissions implied by calls to sensitive or privileged standard library functions, such as file system access, networking, or process control. By following transitive call graphs, it classifies which security-sensitive operations each package can reach,... -
20
testssl.sh
Testing TLS/SSL encryption anywhere on any port
testssl.sh is a free command-line tool that checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more. testssl.sh is free and open-source software. You can use it under the terms of GPLv2, please review the License before using it. Works for Linux, Mac OSX, FreeBSD, NetBSD and WSL/MSYS2/Cygwin out of the box, no need to install or configure something, no gems, CPAN, pip or the like. OpenBSD only needs bash to be... -
21
Deckhouse
Kubernetes platform from Flant
Deckhouse is a Kubernetes platform that allows you to create homogeneous K8s clusters on any infrastructure. It manages clusters comprehensively and “automagically” and provides all necessary modules and add-ons for autoscaling, observability, security, and service mesh implementation. Deckhouse has vanilla Kubernetes under the hood and integrates a balanced set of Open Source tools that have become the industry standard. Out-of-the-box secure configuration of the Kubernetes cluster, least component privileges, pre-configured role model, end-to-end object identity in the audit system, and integration with external directory services. ... -
22
Application Inspector
A source code analyzer built for surfacing features of interest
...Application Inspector is different from traditional static analysis tools in that it doesn't attempt to identify "good" or "bad" patterns; it simply reports what it finds against a set of over 400 rule patterns for feature detection including features that impact security. -
23
NPMplus
improved fork of nginx-proxy-manager
NPMplus is an enhancement tool for the npm ecosystem, providing additional features for managing dependencies, optimizing installations, and improving package management workflows. -
24
Brim
Application to efficiently search and analyze super-structured data
...Inspired by the Unix-tools design pattern, everything Brim does can be run from the command line. Think of Brim's components like Lego blocks that you can easily interconnect and assemble. It’s all open source, so have a look. -
25
CDK
Make security testing of K8s, Docker, and Containerd easier
CDK is an open-sourced container penetration toolkit, designed for offering stable exploitation in different slimmed containers without any OS dependency. It comes with useful net-tools and many powerful PoCs/EXPs and helps you to escape container and take over K8s cluster easily.
