ZeusCloud: The Next-Gen Open Source Cloud Security Solution

The field of cloud computing is growing quickly, and security threats and problems have grown at the same rate. ZeusCloud is a new open-source cloud security tool that is made to deal with the risks and weaknesses of today. ZeusCloud is a game-changer because it has a full set of features, from keeping track of …

Usbsas : Tool And Framework For Securely Reading Untrusted USB Mass Storage Devices

usbsas is a free and open source (GPLv3) tool and framework for securely reading untrusted USB mass storage devices. Description Following the concept of defense in depth and the principle of least privilege, usbsas’s goal is to reduce the attack surface of the USB stack. To achieve this, most of the USB related tasks (parsing …

Matano : The Open-Source Security Lake Platform For AWS

Matano is an open source security lake platform for AWS. It lets you ingest petabytes of security and log data from various sources, store and query them in an open Apache Iceberg data lake, and create Python detections as code for realtime alerting. Matano is fully serverless and designed specifically for AWS and focuses on …

Monkey365 – Tool For Security Consultants Microsoft 365

Monkey365 is an Open Source security tool that can be used to easily conduct not only Microsoft 365, but also Azure subscriptions and Azure Active Directory security configuration reviews without the significant overhead of learning tool APIs or complex admin panels from the start. To help with this effort, Monkey365 also provides several ways to …

Reposaur : The Open Source Compliance Tool For Development Platforms

Reposaur is the open source compliance tool for development platforms. Audit, verify and report on your data and configurations easily with pre-defined and/or custom policies.Supports GitHub. GitLab, BitBucket and Gitea support soon. Features Custom policies using the Rego policy language (learn more) A simple, composable and easy-to-use CLI (learn more) Extendable using a straightforward SDK (written in …

Octopus : Open Source Pre-Operation C2 Server Based On Python And Powershell

Octopus is an open source, pre-operation C2 server based on python which can control an Octopus powershell agent through HTTP/S. The main purpose of creating Octopus is for use before any red team operation, where rather than starting the engagement with your full operational arsenal and infrastructure, you can use Octopus first to attack the …

Hacc The Hub : Open Source Self-Hosted Cyber Security Learning Platform

Hacc The Hub is an open source project that provides cyber security The Hacc The Hub system consists of 3 main parts: Docker: containing all of the boxes creating the environment in which we’ll be learning on. The backend: controlling Docker and responsible for starting/destroying individual box in the system and managing the networking that …

Karma_V2 : A Passive Open Source Intelligence (OSINT) Automated Reconnaissance (Framework)

Karma_V2 can be used by Infosec Researchers, Penetration Testers, Bug Hunters to find deep information, more assets, WAF/CDN bypassed IPs, Internal/External Infra, Publicly exposed leaks and many more about their target. Shodan Premium API key is required to use this automation. Output from the ????? ?? is displayed to the screen and saved to files/directories. …

Security Scorecards : Security Health Metrics For Open Source

Security Scorecards is a tool for Security Health Metrics For Open Source. Motivation A short motivational video clip to inspire us: https://youtu.be/rDMMYT3vkTk “You passed! All D’s … and an A!” Goals Automate analysis and trust decisions on the security posture of open source projects. Use this data to proactively improve the security posture of the critical projects …

RATel : An Open Source Penetration Test Tool

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software. Screenshots Added Features Unicode management …