security-scan

Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点

Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

A Laravel package to scrub sensitive information that breaks operational security policies from being leaked on accident or not by developers.

Command line interface for the Phylum API

A quick and easy to use security reconnaissance webapp tool, does OSINT, analysis and red-teaming in both passive and active mode. Written in nodeJS and Electron.

GitHub Action for Gitleaks

An ongoing collection infosec courses, learning tutorials, libaries, and training resources.

SSH server vulnerability and security scanner with Operous

An Online Collection of Open Source Intelligence Tools

This repository hosts DSP AppSec internal infrastructure apps deployed in GCP.

MecaU is a program designed to scan and detect the presence of malware in a directory specified by the user through the command line. The program uses a hash database of suspicious files that is downloaded from an external server, and also compiles and uses Yara rules to look for patterns of malicious behavior in files.

A PowerShell module for generating and parsing "security.txt" files.

For converting security scan results into a format which can be imported into Jira

This script check the CVE-2021-21985 vulnerability and patch on vCenter Server.

A Laravel demo of a Laravel package to scrub sensitive information that breaks operational security policies from being leaked on accident or not by developers.

PHP code sniffer plugin for Drupal code security audit.