freedomofpress / threat-modeling

Related projects: ⓘ

• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated last year
• fabaff / fsl-test-bench
  FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching s…
  ☆27Updated 2 months ago
• magoo / forecast-documentation
  Notes and reference for ongoing forecasting.
  ☆16Updated 2 years ago
• telekom-security / BadIPFetch
  ☆11Updated this week
• blackfist / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• migolovanov / modsecurity-checker
  Script to check ModSecurity rules agains some WAF
  ☆11Updated 5 years ago
• zmap / zcertificate
  Command line utility for parsing certificates
  ☆59Updated 3 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated 8 months ago
• crtsh / ocsp_monitor
  OCSP Responder monitor
  ☆31Updated last month
• jedisct1 / ipgrep
  Extract, defang, resolve names and IPs from text
  ☆22Updated 8 months ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆17Updated last month
• gravwell / ingesters
  ☆13Updated this week
• 0x3a / ipwrangle
  Expand CIDRs or wrangle a list of IPs back to its smallest CIDR blocks possible
  ☆10Updated 4 years ago
• CaliDog / tachikoma
  Tachikoma is a security alerting framework for human beings
  ☆22Updated 6 years ago
• phishdetect / phishdetect-extension
  Browser extension that complements the PhishDetect service
  ☆20Updated last year
• fnzv / OpenPortNotifier
  Simple tool to monitor network changes over time and trigger alerts
  ☆14Updated 4 years ago
• kindredgroup / paf-credentials-checker
  PCC's aim is to provide a high performing offline tool to easily assess which users are vulnerable to Password Reuse Attacks (a.k.a. Pass…
  ☆18Updated 4 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆18Updated 8 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆29Updated 3 years ago
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 6 years ago
• securitywithoutborders / organization
  Documents pertaining to internal policies and guidelines
  ☆12Updated 7 years ago
• DinisCruz / veracode-api
  Repo to hold veracode related issues and code snippets
  ☆9Updated 7 years ago
• CIRCL / pbtc
  Passive Bitcoin Project
  ☆10Updated 9 years ago
• wisespace-io / nettfiske
  Detect Phishing fetching Certificate Transparency Logs
  ☆20Updated 3 years ago
• auditNG / go-audit-container
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆16Updated 5 years ago
• bitsofinfo / testssl.sh-processor
  Wrapper for concurrent batch processing of testssl.sh commands
  ☆13Updated 5 years ago
• mayakacz / presentation-slides
  Slides from presentations I give!
  ☆20Updated 4 months ago
• jgamblin / dnsrecon-for-slack
  Custom slash command to do a basic dnsrecon from within Slack
  ☆13Updated 8 years ago
• nl5887 / notebooks
  Notebook collection
  ☆10Updated 5 years ago
• w8mej / PoorOperationalSecurityPractices
  Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.
  ☆13Updated 9 months ago