GitGot
Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets. It uses GitHub's API to fetch data and then uses various techniques to identify potential secrets. It's designed to be used in conjunction with other tools and techniques to identify and remediate sensitive data. It's a powerful tool for identifying potential security risks in public GitHub repositories.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A tutorial on setting up a virtual ARM environment, reversing ARM binaries, and writing basic exploits for ARM using the trafman challenge of rwthCTF as an example.
Joe Sandbox Community provides automated cloud-based malware analysis across multiple OS platforms.
A collection of Yara rules for detecting malware evasion techniques
A developer added malicious code to a popular open-source package, wiping files on computers in Russia and Belarus as a protest.
Multi-cloud antivirus scanning API with CLAMAV and YARA support for AWS S3, Azure Blob Storage, and GCP Cloud Storage.
A simple XSS scanner tool for identifying Cross-Site Scripting vulnerabilities
PLASMA is an interactive disassembler with support for various architectures and formats, offering a Python API for scripting.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.