Alternatives and similar repositories for npm_scan

Users that are interested in npm_scan are comparing it to the libraries listed below

• ronin-rb / ronin-db
  A common database library for managing and querying security data
  ☆17Updated 5 months ago
• salesforce / lobster-pot
  Scans every git push to your Github organisations to find unwanted secrets.
  ☆87Updated 6 months ago
• arkadiyt / ssrf_filter
  A ruby gem for defending against Server Side Request Forgery (SSRF) attacks
  ☆87Updated 6 months ago
• NeuraLegion / wafalyzer
  Web Application Firewall (WAF) Detector
  ☆35Updated 2 years ago
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆22Updated 2 years ago
• trailofbits / ruzzy
  A coverage-guided fuzzer for pure Ruby code and Ruby C extensions
  ☆108Updated last week
• ronin-rb / ronin-exploits
  A Ruby micro-framework for writing and running exploits
  ☆80Updated 9 months ago
• adanalvarez / TrailAlerts
  TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…
  ☆51Updated this week
• tenable / hidden-services-revealer
  ☆39Updated last year
• lmoratti / risky-records
  Given a list of domains and known IP and buckets that are owned, which might be susceptible to domain hijacking?
  ☆15Updated last year
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆21Updated 2 weeks ago
• Permiso-io-tools / cloudtail
  ☆31Updated 4 months ago
• aidansteele / awsaccountcreds
  ☆23Updated 2 years ago
• hac01 / gcp-iam-brute
  ☆50Updated last year
• 0xdabbad00 / security_incidents_from_caching
  Collection of incidents resulting from caching issues
  ☆29Updated 5 months ago
• jtdowney / private_address_check
  Ruby gem to help prevent Server Side Request Forgery
  ☆42Updated last year
• ankane / pdscan
  Scan your data stores for unencrypted personal data (PII)
  ☆272Updated 3 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆31Updated 4 months ago
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆60Updated last year
• picatz / shodanz
  🔭 A modern, async Ruby gem for Shodan.
  ☆127Updated last year
• iknowjason / hammer
  An example of a mis-configured Rails application release under MIT license.
  ☆20Updated 2 years ago
• nickthecook / ops
  The operations team for your project.
  ☆51Updated 3 months ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆95Updated 4 years ago
• arthurnn / code-scanning-rubocop
  ☆21Updated last year
• Hacking-the-Cloud / htc-ctfs
  Holds the public Hacking the Cloud CTFs.
  ☆59Updated last year
• cedowens / aws-cli-notes
  A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…
  ☆19Updated 4 years ago
• adanalvarez / HoneyTrail
  Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…
  ☆51Updated 11 months ago
• anirudhbiyani / findmytakeover
  find dangling domains in a multi cloud environment
  ☆173Updated 2 weeks ago