KICS Logo

KICS

0
Free
Visit Website

Keeping Infrastructure as Code Secure KICS stands for Keeping Infrastructure as Code Secure, it is open source and is a must-have for any cloud native project. Getting Started Setting up and using KICS is super-easy. First, see how to install and get KICS running. Then explore KICS output results format and quickly fix the issues detected. Interested in more advanced stuff? Deep dive into KICS queries. Understand how to integrate KICS in your favourite CI/CD pipelines. See KICS documentation for more details and topics. How it Works What makes KICS really powerful and popular is its built-in extensibility. This extensibility is achieved by: Fully customizable and adjustable heuristics rules, called queries. These can be easily edited, extended and added. Robust but yet simple architecture, which allows quick addition of support for new Infrastructure as Code solutions. Community You're welcome to

FEATURES

ALTERNATIVES

Finds publicly known security vulnerabilities in a website's frontend JavaScript libraries.

Open source security auditing tool to search and dump system configuration.

A guide to brute forcing DVWA on the high security level with anti-CSRF tokens

Script to find exploits for vulnerable software packages on Linux systems using an exploit database.

Automated vulnerability discovery tool for Cake PHP framework with limited false positives.

An Open Source supply chain security and auditing tool that tracks projects and dependencies, monitoring for vulnerabilities and issues.

A tool that automatically audits website security by crawling an entire website and identifying vulnerabilities

Python-based extension for integrating a Yara scanner into Burp Suite for on-demand website scans based on custom rules.