Alternatives and similar repositories for Flow:

Users that are interested in Flow are comparing it to the libraries listed below

• adeptex / whispers
  Identify hardcoded secrets in static structured text (version 2)
  ☆90Updated last week
• WithSecureLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆137Updated last month
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆52Updated 3 weeks ago
• caverav / auditforge
  AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.
  ☆69Updated this week
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆99Updated 3 months ago
• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆146Updated 2 months ago
• latiotech / LAST
  Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini
  ☆156Updated 11 months ago
• DataDog / undocumented-aws-api-hunter
  A tool to uncover undocumented APIs from the AWS Console.
  ☆95Updated 2 months ago
• referefref / gitdoorcheck
  Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
  ☆72Updated 11 months ago
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆87Updated 6 months ago
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆39Updated this week
• csdev / ezghsa
  EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.
  ☆35Updated last month
• referefref / modpot
  Modular web-application honeypot platform built using go and gin
  ☆55Updated 9 months ago
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆67Updated 10 months ago
• tenable / hidden-services-revealer
  ☆32Updated 6 months ago
• gabrielsoltz / metahub
  MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.
  ☆167Updated this week
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆66Updated 2 weeks ago
• edera-dev / am-i-isolated
  Validate the isolation posture of your container environment.
  ☆244Updated last week
• SecurityUniversalOrg / SecuSphere
  Efficient DevSecOps
  ☆47Updated 2 months ago
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆46Updated this week
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆39Updated last year
• chebuya / sastsweep
  tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …
  ☆211Updated last week
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆161Updated 5 months ago
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆64Updated 7 months ago
• elastic / SWAT
  Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…
  ☆164Updated 4 months ago
• doyensec / PoiEx
  🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends
  ☆71Updated last year
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆120Updated 3 months ago