S

security

️

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

https://gitlab.com/gitlab-org/security-products/gemnasium-db The GitLab Advisory Database, used in GitLab Ultimate Dependency Scanning and Container Scanning. Contributions welcome! Search the database at https://advisories.gitlab.com.

https://github.com/caddyserver/caddy

Fast and extensible multi-platform HTTP/1-2-3 web server with automatic HTTPS

caddyserver.com

https://github.com/cilium/cilium eBPF-based Networking, Security, and Observability

️

https://github.com/future-architect/vuls

https://github.com/bytedance/vArmor vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that are ready to use out of the box.

https://github.com/DataDog/stratus-red-team

️ Granular, Actionable Adversary Emulation for the Cloud

https://stratus-red-team.cloud/

https://github.com/smallstep/cli

A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.

https://github.com/smallstep/certificates

A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

https://github.com/raspberrypi/rpi-sb-provisioner

A minimal-input automatic secure boot provisioning system for Raspberry Pi devices.

https://github.com/firefart/stunner.git Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.

https://github.com/aquasecurity/cloudsploit Cloud Security Posture Management (CSPM)

https://github.com/meta-llama/PurpleLlama

Set of tools to assess and improve LLM security.

https://github.com/bytedance/Elkeid Elkeid is an open source solution that can meet the security requirements of various workloads

https://github.com/aquasecurity/traceeshark Deep Linux runtime visibility meets Wireshark

https://github.com/HumanCompatibleAI/tensor-trust

A prompt injection game to collect data for robust ML research

https://github.com/Netflix/lemur Repository for the Lemur Certificate Manager

https://github.com/aquasecurity/vuln-list

NVD, Ubuntu, Alpine

https://github.com/smallstep/clients

Various client examples for getting TLS certificates from a Smallstep CA server

https://github.com/Infisical/infisical

Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI