Security
Browse 248 security tools
FEATURED
A PHP 5.x polyfill for random_bytes() and random_int() created by Paragon Initiative Enterprises.
CIFv3 is the next version of the Cyber Intelligence Framework, developed against Ubuntu16, encouraging users to transition from CIFv2.
A PowerShell script to interact with the MITRE ATT&CK Framework via its own API using the deprecated MediaWiki API.
Accessing databases stored on a machine by the Chrome browser and dumping URLs found.
A library for generating random numbers and strings of various strengths, useful in security contexts.
A guide outlining security considerations for using OpenLDAP Software, including selective listening and IP firewall capabilities.
A series of levels teaching about common mistakes and gotchas when using Amazon Web Services (AWS).
A brute-force protection middleware for express routes that rate-limits incoming requests.
Centrally Manage Cloud Firewall Rules with AWS Firewall Manager
A minimal, consistent API for building integrations with malware sandboxes
A setuid implementation of user namespaces that enables running unprivileged containers without root privileges as a secure alternative to traditional container runtimes.
FunctionShield is a Serverless Security Library for Developers to enforce strict security controls on AWS Lambda & Google Cloud Functions runtimes.
A comprehensive database of exploits and vulnerabilities for researchers and professionals
AWS Shield provides managed DDoS protection for your applications, automatically detecting and mitigating sophisticated network-level DDoS events.
A secret management service that stores encrypted secrets in DynamoDB for secure credential and sensitive data management.
A blog post discussing the differences between Solaris Zones, BSD Jails, VMs, and containers, with the author arguing that containers are not a real thing.
Sniffglue is a network sniffer tool written in Rust with advanced filter sensitivity options and secure packet processing.
A portable public domain password hashing framework for PHP applications.
A DICOM server with a twist, blocking C-STORE attempts for protection but logging them.
A blog post discussing the often overlooked dangers of CSV injection in applications.
A fully managed service that securely stores, rotates, and manages sensitive data such as database credentials and API keys.
