GHAST (GitHub Actions Static Analysis Tool) is a tool to analyze the security posture of your GitHub Actions and its surrounding environment for common security vulnerabilities or missing security configuration.
☆20Aug 29, 2023Updated 2 years ago
Alternatives and similar repositories for ghast
Users that are interested in ghast are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A powerful containerized tool that automatically downloads, extracts, and scans packages from PyPI and npm for embedded secrets, API keys…☆20Jul 25, 2025Updated 11 months ago
- DEFCON 33 Workshop - Open Source Malware 101 - Everything you always wanted to know about npm malware (and more)☆16Aug 8, 2025Updated 10 months ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆11Oct 29, 2018Updated 7 years ago
- A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, sta…☆25Jun 7, 2023Updated 3 years ago
- A malicious KeePass plugin to exfiltrate the master key.☆16Oct 25, 2021Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆14Feb 15, 2022Updated 4 years ago
- ☆24Mar 4, 2025Updated last year
- ☆14Apr 9, 2019Updated 7 years ago
- wp content injection mass exploit Perl Script☆12Jul 11, 2017Updated 8 years ago
- Web Application Firewall Test Script☆14Feb 28, 2023Updated 3 years ago
- Jenkins Security Research or Hacking Jenkins ;)☆12Dec 10, 2024Updated last year
- Strafer: A tool to detect potential infections in Elasticsearch instances☆27Mar 14, 2021Updated 5 years ago
- A simple web app to get the latest EPSS data for a CVE ID☆13Dec 14, 2025Updated 6 months ago
- [WIP!] a cross platfrom Go library to work with the notification area / system tray☆11Aug 15, 2019Updated 6 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Simple shell script for automated domain recognition with some tools☆20Mar 9, 2019Updated 7 years ago
- Find open databases - Powered by Binaryedge.io☆14Jan 4, 2020Updated 6 years ago
- Java RAT called STRRat - Source code & Deobfuscator☆12Aug 12, 2022Updated 3 years ago
- Supply Chain Security Research - Attack Trees☆10Jan 9, 2023Updated 3 years ago
- The Vanta Control Set maps common compliance standards from their requirements to controls and provides them in an easy to consume machin…☆20Aug 26, 2021Updated 4 years ago
- 腾讯安全沙龙 一 二 三 期PPT集合☆19May 24, 2025Updated last year
- Terradoc is a lean helper tool that creates human readable documentation from HCL syntax.☆13Nov 21, 2024Updated last year
- ☆116Jul 3, 2024Updated 2 years ago
- Import your WordPress blog to Write.as☆13Feb 20, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Everything related to YARA☆16Apr 18, 2026Updated 2 months ago
- Phone Number Gathering & OSINT Tool. Collects Phone Numbers and Performs OSINT on the Numbers. Only works on Nigerian Numbers at the mome…☆15Aug 25, 2020Updated 5 years ago
- GitHub action to generate a CycloneDX SBOM for Node.js☆22Jul 11, 2025Updated 11 months ago
- Nice (ish) bindings for the EndpointSecurity framework on macOS for Rust.☆21Dec 14, 2023Updated 2 years ago
- ⚠️ ARCHIVED**: This repository is no longer actively maintained. All Sigma rules are now managed and available in SIEM Rules☆13Mar 19, 2026Updated 3 months ago
- Eddie Vetter - triage macOS applications for security research☆16May 24, 2021Updated 5 years ago
- Yara rules written by me, for free use.☆20Nov 26, 2021Updated 4 years ago
- CDF FAQ☆11Aug 16, 2022Updated 3 years ago
- Websocket based egress tester☆20Nov 23, 2016Updated 9 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Kentico <=12.0.14 is vulnerable to a remote code execution via the SyncServer☆10Sep 28, 2020Updated 5 years ago
- awsbe☆17Jun 1, 2022Updated 4 years ago
- Shared virtualization management library☆33Jun 24, 2026Updated last week
- Scripts for solving WebSecurity Academy labs of PortSwigger using Python☆105Aug 28, 2025Updated 10 months ago
- Demo illustrating Spring Boot deployment on Kubernetes with automatic manifests generation with Dekorate☆11Jun 25, 2026Updated last week
- DbgFlashVul☆10Sep 8, 2015Updated 10 years ago
- All of our GitHub Actions rolled into one. Or as we like to say: One GitHub Action to rule them all!☆21Jun 7, 2023Updated 3 years ago