Horusec is an open source tool that performs static code analysis to identify security flaws during the development process. Currently, the languages for analysis are: C#, Java, Kotlin, Python, Ruby, Golang, Terraform, Javascript, Typescript, Kubernetes, PHP, C, HTML, JSON, Dart.
The tool has options to search for key leaks and security flaws in all files of your project, as well as in Git history. Horusec can be used by the developer through the CLI and by the DevSecOps team on CI /CD mats. See in our DOCUMENTATION the complete list of tools and languages that we perform analysis.
Project Roadmap 2021
We started the project to aggregate within our company, but as the search grew more and more we chose to apply good practices and open it up for everyone to collaborate with this incredible project.
In order to achieve our goals, we separated in some delivery phases:
Getting Started
Installing
To see more details how install go to HERE
horusec version
Usage
For use horusec-cli and check your vulnerabilities
horusec start
or send with the authorization token to view the content analytically in the horusec admin panel.
horusec start -a=”<YOUR_TOKEN_AUTHORIZATION>”
To acquire the authorization token and you can see your vulnerabilities analytically on our panel see more details HERE
WARN: When horusec starts an analysis it creates a folder called .horusec
. This folder serves as the basis for not changing your code. So we recommend that you add the line .horusec
into your .gitignore
file so that this folder does not need to be sent to your git server!
Requirements for usage horusec-cli
Usage locally
For usage the horusec locally clone horusec in your local machine and run
make install
and run the HORUSEC-CLI to start the analysis
For usage complete feature of the horusec you can see enter using this default user generated by horusec for you usage.
WARN: We do dns validation for account creation, so remember to use a valid email. For tests accounts we accept …@example.com as a valid dns.
email: dev@example.com
password: Devpass0*
Horusec manager
Burrow is an open source tool for burrowing through firewalls, built by teenagers at Hack Club.…
Simple golang webserver that listens for basic auth or post requests and sends a notification…
Nutek Security Platform for macOS and Linux operating systems. Tools for hackers, bug hunters and…
Welcome to SecureSphere Labs, your go-to destination for a curated collection of powerful hacking tools…
All in one Docker-based workstation with hacking tools for Pentesting and offsec Labs by maintained…
Got it! Below is the updated README.md file with instructions for downloading the project on…