ZupIT / horusecLinks
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
☆1,226Updated last week
Alternatives and similar repositories for horusec
Users that are interested in horusec are comparing it to the libraries listed below
Sorting:
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…☆540Updated 3 years ago
- Performing security tests inside your CI☆578Updated last year
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆842Updated last year
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆401Updated 6 months ago
- Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan☆863Updated this week
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,120Updated last week
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆990Updated 6 months ago
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆748Updated 5 months ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆922Updated this week
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.☆935Updated 3 months ago
- Automating situational awareness for cloud penetration tests.☆2,123Updated 2 months ago
- Security Champions Playbook v 2.1☆370Updated last year
- ☆415Updated 2 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆474Updated 2 years ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,306Updated this week
- ☆527Updated this week
- An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses☆1,672Updated 3 months ago
- RegVuln is a tool that use Engine Trivy to generate reports about images Docker from Registry, have integration with Defect Dojo to Vulne…☆16Updated 10 months ago
- A laboratory for learning secure web and mobile development in a practical manner.☆936Updated 8 months ago
- Checklist for container security - devsecops practices☆1,571Updated last year
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆570Updated 2 months ago
- Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized en…☆1,172Updated 4 months ago
- Organize your API security assessment by using MindAPI. It's free and open for community collaboration.☆842Updated 4 months ago
- Conviso Vulnerable Web Application is the OSS project from the Conviso Application Security for the community. The project represents a v…☆60Updated 9 months ago
- It's a Horusec Action proof of concept☆14Updated last year
- Vulnerable app with examples showing how to not use secrets☆1,319Updated this week
- An open source threat modeling tool from OWASP☆1,112Updated this week
- Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.☆2,305Updated 3 weeks ago
- Repo for all the SKF Docker lab examples☆453Updated 10 months ago
- A curated list for Awesome Kubernetes Security resources☆1,958Updated last year