CI/CD Security Analyzer
☆736Feb 24, 2025Updated last year
Alternatives and similar repositories for raven
Users that are interested in raven are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Runtime Security Solution for your CI/CD Pipeline☆114Mar 12, 2026Updated last week
- GitHub Actions Pipeline Enumeration and Attack Tool☆736Mar 5, 2026Updated 2 weeks ago
- Demos for our research on Github actions script injection vulnerabilities☆13May 14, 2024Updated last year
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆836Mar 28, 2025Updated 11 months ago
- ☆192Apr 16, 2025Updated 11 months ago
- Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.☆2,600Updated this week
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆341Mar 10, 2026Updated last week
- Tool for building Kubernetes attack paths☆951Updated this week
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆999Updated this week
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆496Jun 27, 2025Updated 8 months ago
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆491Mar 6, 2026Updated 2 weeks ago
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Jan 4, 2026Updated 2 months ago
- Melee: Tool to Detect Infections in MySQL Instances☆22Aug 6, 2023Updated 2 years ago
- boostsecurityio/poutine☆385Mar 10, 2026Updated last week
- A Powerful Network Reconnaissance Tool for Security Professionals☆106Dec 29, 2024Updated last year
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆249Dec 8, 2025Updated 3 months ago
- An offensive data enrichment pipeline☆944Updated this week
- WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.☆150Jun 5, 2025Updated 9 months ago
- A security layer for Git repositories☆579Mar 16, 2026Updated last week
- SpeedyTest☆17Jun 21, 2023Updated 2 years ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆62Jan 25, 2025Updated last year
- Gram is Klarna's own threat model diagramming tool☆331Updated this week
- Automating situational awareness for cloud penetration tests.☆2,320Mar 10, 2026Updated last week
- ☆52Jul 11, 2024Updated last year
- The useful exploit finder☆827Jan 19, 2026Updated 2 months ago
- GitHub Actions Cache Native Malware - for Educational and Research Purposes only.☆129Jan 28, 2026Updated last month
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,206Dec 29, 2025Updated 2 months ago
- cloudgrep is grep for cloud storage☆326Mar 14, 2026Updated last week
- A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.☆2,207Jul 14, 2024Updated last year
- The AI automation platform built for security teams and agents.☆3,530Updated this week
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆470Updated this week
- Enumerate valid users within Microsoft Teams and OneDrive with clean output.☆60Feb 4, 2025Updated last year
- boostsecurityio/lotp☆146Mar 3, 2026Updated 2 weeks ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- Awesome secure by default libraries to help you eliminate bug classes!☆701Dec 6, 2025Updated 3 months ago
- ☆569Mar 28, 2024Updated last year
- The perfect butler for pentesters, bug-bounty hunters and security researchers☆93Feb 20, 2026Updated last month
- FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is de…☆819Mar 6, 2026Updated 2 weeks ago
- Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.☆2,315Feb 21, 2026Updated last month