20 repositorios
Resources for identifying and mitigating security vulnerabilities in web applications and scripts.
Distinguishing note: Focuses on the security implications of executing archived or external JavaScript code.
Explore 20 awesome GitHub repositories matching security & cryptography · Web Security Analysis. Refine with filters or upvote what's useful.
ArchiveBox is a self-hosted archiving tool designed for personal digital preservation and research data management. It functions as an automated web preservation engine that monitors URL inputs from bookmarks, browser history, or manual entries to capture and store permanent, offline copies of web content. By utilizing headless browser automation, the system renders dynamic web pages to ensure that captured snapshots, PDFs, and media assets remain accurate and accessible even if the original source disappears. The project distinguishes itself through a modular extractor pipeline and a task-qu
Security Risks of Viewing Archived JS — a named example documented in this learning resource.
Res-downloader is a network proxy utility designed to intercept, analyze, and extract multimedia assets from web traffic. It functions as a gateway that captures video, audio, and image files directly from data streams for local storage and offline access. The tool employs man-in-the-middle interception to decrypt and inspect network packets, allowing it to identify media resources through pattern matching and content type filtering. It integrates proxy-based routing to manage outgoing requests, enabling the retrieval of content that may be subject to regional restrictions or network-level ac
Analyzes how online platforms deliver media content by inspecting and extracting assets from web traffic.
This project is an NGINX administration guide and security hardening manual providing a collection of best practices and technical instructions for optimizing server performance and configuration. It serves as a resource for NGINX deployment automation, specifically focusing on installing and configuring the server from source using scripts to manage dependencies and custom parameters. The guide emphasizes security hardening through auditing checklists and methods designed to prevent sensitive information leaks. It provides technical strategies and configuration patterns to improve resource e
Provides an auditing framework to inspect server settings and headers against security best practices.
httpx is a suite of tools and libraries for HTTP reconnaissance, infrastructure discovery, and DNS resolution. It functions as a command line toolkit for extracting metadata and status codes from HTTP targets and CIDR ranges, as well as a Go library for integrating these probing capabilities into custom programs. The project distinguishes itself through specialized infrastructure profiling, using TLS fingerprinting to extract JARM hashes and certificate details. It identifies underlying components such as CDN usage, Autonomous System Numbers, and CNAMEs to map web server software and infrastr
Inspects TLS certificates and Content Security Policy headers to evaluate the security configuration of web servers.
Sn1per is a vulnerability management platform and penetration testing orchestrator designed to automate reconnaissance, vulnerability scanning, and exploit verification. It functions as a dockerized security toolkit that coordinates multiple tools into a unified automated pipeline to identify security flaws across network and web assets. The platform features an attack surface manager for discovering internet-facing assets through OSINT, DNS enumeration, and certificate transparency. It distinguishes itself with an AI-powered security analyzer that uses large language models to summarize scan
Crawls web targets to identify security holes, CMS versions, and underlying directory structures.
This project is a security compliance tool and configuration auditor designed to evaluate Docker deployments against industry security benchmarks. It functions as a script-based scanner that identifies misconfigurations and vulnerabilities within both the host operating system and container settings. The tool specifically implements the Center for Internet Security standards for Docker to verify host and container configurations. It enables a hardening workflow by comparing system states against these standards to identify security gaps and document compliance status. The audit engine suppor
Automates the inspection of Docker host and container configurations to identify security gaps and misconfigurations.
WPScan is a security analysis utility and vulnerability scanner designed specifically for auditing WordPress installations and other content management systems. It functions as a web application security tool that identifies misconfigurations, outdated software, and security holes in core installations, plugins, and themes. The tool employs black-box scanning techniques to perform site component enumeration, identifying users, themes, and plugins by matching known file paths and response signatures. It matches these detected components against a database of known security flaws to analyze the
Provides a comprehensive security analysis tool for identifying vulnerabilities in WordPress web installations.
kube-bench is a Kubernetes security benchmark scanner and configuration auditor. It verifies if a cluster adheres to the Center for Internet Security standards and other hardening guides to identify security misconfigurations and vulnerabilities. The tool operates as a containerized security scanner, utilizing host namespaces to analyze nodes and control plane components without requiring the installation of binaries directly on the host. It supports multiple Kubernetes distributions, applying environment-specific benchmarks to ensure auditing accuracy for managed services. The project cover
Applies environment-specific benchmarks for managed services to ensure accurate security auditing across different providers.
CodeIgniter is a PHP web framework built on the Model-View-Controller pattern, designed for building full-stack web applications. It provides a lightweight toolkit with minimal configuration, organizing application logic into controllers, models, and views for clean separation of concerns. The framework includes a fluent query builder for constructing SQL statements programmatically, PSR-4 autoloading with namespace mapping, and a service-based dependency injection container for managing shared class instances. The framework distinguishes itself through its comprehensive set of built-in tools
Provides automated scanning of application settings and PHP environment for insecure defaults.
Kubernetes Goat es un entorno de entrenamiento de seguridad diseñado para practicar la identificación y explotación de vulnerabilidades comunes dentro de un clúster intencionalmente inseguro. Proporciona un entorno controlado para simular explotaciones del sistema, incluyendo escapes de contenedores, configuraciones erróneas de roles y peticiones del lado del servidor. El proyecto utiliza el despliegue de vulnerabilidades basado en escenarios para crear fallos de seguridad específicos. Incluye utilidades para la gestión del entorno que permiten restaurar el clúster a una línea base limpia eliminando escenarios vulnerables, cuentas de servicio y enlaces de roles. La plataforma cubre varios dominios de seguridad centrales, incluyendo la auditoría de clústeres contra estándares de la industria, seguridad de red a través de la implementación de políticas y defensa en tiempo real mediante el monitoreo de actividad. También proporciona herramientas para el análisis de configuración para identificar brechas de seguridad y la aplicación de límites de aislamiento de red.
Checks environments against security benchmarks and uses sanitization to identify configuration gaps.
Zizmor is a security linter and static analysis tool designed to audit GitHub Actions workflow files. It functions as a CI/CD security scanner that identifies security vulnerabilities, misconfigurations, and software supply chain risks within automation pipelines. The project distinguishes itself by providing an automated workflow remediator that applies security fixes to identified vulnerabilities. It also implements a language server for integration with code editors and supports a variety of analysis personas to scale the sensitivity and volume of reported findings. The tool covers a broa
Allows defining new analysis rules to detect specific vulnerabilities by implementing traits that inspect workflow jobs.
Nettacker es un framework de pruebas de penetración automatizado diseñado para orquestar el reconocimiento, escaneo de puertos y detección de vulnerabilidades. Funciona como una herramienta de reconocimiento de red y escáner de vulnerabilidades que identifica puertos abiertos, realiza fingerprinting de servicios y verifica sistemas contra bases de datos de fallos de seguridad conocidos. El framework se distingue por combinar un crawler de aplicaciones web para descubrir rutas ocultas mediante fuzzing con un sistema de gestión de vulnerabilidades que persiste los resultados del escaneo en una base de datos para rastrear evaluaciones históricas. También incluye capacidades especializadas para la enumeración de subdominios, fuerza bruta de credenciales y la capacidad de enrutar tráfico a través de proxies para anonimización. El sistema cubre una amplia superficie de capacidades de seguridad, incluyendo descubrimiento de activos de red, auditoría de servicios multi-protocolo y auditoría de configuración. Soporta escaneo multi-objetivo a través de rangos IP y bloques CIDR, y proporciona herramientas para generar informes de seguridad en múltiples formatos. El control programático está disponible a través de una interfaz basada en REST, permitiendo que el framework se integre en pipelines de seguridad y flujos de automatización.
Inspects server settings and HTTP headers to identify security misconfigurations and missing security headers.
CDK es un conjunto de herramientas especializado para la auditoría de seguridad de contenedores, explotación de escapes de contenedores y pruebas de penetración de infraestructura en la nube. Proporciona una colección de scripts y herramientas diseñadas para identificar y explotar vulnerabilidades en los runtimes de contenedores para salir de entornos aislados y ejecutar comandos en el sistema operativo host subyacente. El proyecto cuenta con una suite de explotación de runtime Docker dedicada para abusar de la API de Docker, procfs y cgroups para obtener acceso no autorizado a nivel de host. Incluye técnicas específicas para eludir el aislamiento mediante LXCFS, explotación de espacios de nombres de usuario y montaje de discos del host, así como capacidades para extraer metadatos de la nube y auditar permisos de cuentas de servicio para escalar privilegios en entornos de clúster. El kit de herramientas cubre una amplia gama de capacidades de auditoría de seguridad, incluyendo la auditoría de clústeres Kubernetes para la exfiltración de secretos y análisis de políticas, escaneo de archivos y servicios sensibles, y la detección de intercambio de red del host. También proporciona utilidades para establecer reverse shells, desplegar payloads en entornos restringidos e instalar herramientas de administración del sistema dentro de contenedores mínimos.
Includes a utility to retrieve and list security policy rules to identify restrictions on container configurations.
Este proyecto es una guía completa de ingeniería frontend y plan de estudios de desarrollo web. Sirve como referencia para los lenguajes, herramientas y patrones arquitectónicos utilizados para construir aplicaciones web, incluyendo un manual dedicado a la seguridad y el rendimiento web. El repositorio proporciona un catálogo de herramientas curado para la edición de código, control de versiones y flujos de trabajo de despliegue. También incluye rutas de aprendizaje estructuradas que cubren el diseño de interfaces de usuario, gestión de estado y optimización del rendimiento del navegador. El contenido cubre una amplia gama de dominios de ingeniería, incluyendo análisis de riesgos de seguridad, metodologías de prueba de aplicaciones web y principios de diseño de interfaces de usuario. Detalla además referencias de tecnologías web centrales y estrategias para la optimización de carga de páginas y sincronización de datos. El manual está redactado utilizando markdown y generado como un sitio estático.
Provides resources for identifying and mitigating security vulnerabilities within the browser and across network protocols.
Cartography es un framework de visualización de infraestructura y análisis de seguridad basado en grafos. Ingiere datos de diversos proveedores de nube, identidad y software-as-a-service para modelar relaciones complejas entre recursos, usuarios y hallazgos de seguridad dentro de una base de datos de grafos centralizada. Al mapear estas interdependencias, la plataforma permite a las organizaciones obtener visibilidad de su entorno e identificar posibles riesgos de seguridad mediante consultas de recorrido de grafos. La plataforma se distingue por su normalización basada en ontologías y correlación de entidades multiplataforma, que mapean datos heterogéneos de múltiples fuentes en un modelo unificado y consistente. Emplea pipelines de ingestión modulares y filtrado basado en esquemas para mantener este grafo, asegurando que los datos de infraestructura permanezcan precisos mediante la poda automatizada basada en el estado de nodos obsoletos. Este enfoque permite el descubrimiento de rutas de ataque complejas y configuraciones de seguridad erróneas que abarcan sistemas dispares de nube, dispositivos y gestión de identidades. Más allá del modelado central, el sistema proporciona capacidades extensas para el inventario de activos, gobernanza de identidades y análisis de la cadena de suministro de software. Admite una amplia gama de integraciones, incluyendo recursos de computación y redes nativos de la nube, telemetría de gestión de endpoints y metadatos del ciclo de vida de desarrollo. Los usuarios pueden extender la funcionalidad de la plataforma definiendo reglas de seguridad personalizadas, añadiendo trabajos de análisis de datos especializados o integrando nuevas fuentes de inteligencia a través de su framework modular. El proyecto está implementado en Python y proporciona documentación para configurar módulos de ingestión y definir consultas de grafos personalizadas.
Defines new security checks by writing queries to gather evidence and specifying a data model for findings.
htrace.sh is a command-line diagnostic suite designed for profiling web traffic, auditing security configurations, and analyzing network connectivity for remote endpoints. It functions as a shell-based orchestration tool that wraps standard system utilities to perform modular diagnostic tasks and infrastructure analysis. The tool distinguishes itself by providing a unified interface for both HTTP request debugging and automated security scanning. Users can customize request parameters, including headers, methods, and proxy settings, to simulate specific client behaviors. It further automates
Executes automated scans of SSL, firewall, and DNS configurations to identify security vulnerabilities.
This project is a comprehensive frontend engineering study guide designed to cover the essential technical concepts of modern web development. It serves as a multi-disciplinary reference for mastering the browser execution engine, the JavaScript language, and the structural fundamentals of the web. The collection provides deep dives into JavaScript language internals, including execution contexts, closures, prototypes, and the event loop. It further details web browser internals, focusing on the critical rendering path, DOM construction, and engine mechanics. The guide also covers web securi
Analyzes common web vulnerabilities including XSS, CSRF, and the Same Origin Policy.
Argus is a modular network reconnaissance framework designed for gathering network intelligence, mapping infrastructure, and assessing security postures through automated discovery tasks. It operates as a containerized security toolset that allows for the consistent execution of specialized information-gathering modules across different operating systems. The system functions as an infrastructure audit tool and a web application security scanner, performing tasks such as DNS lookups, port scanning, and the inspection of HTTP headers to detect vulnerabilities. It also serves as a threat intell
Evaluates SSL/TLS configurations, cryptographic setups, and leaked credentials to identify security gaps.
This project is a comprehensive web application penetration testing guide and vulnerability research framework. It provides a structured methodology for identifying and exploiting security flaws through a phased approach involving reconnaissance, analysis, and exploitation. The resource is distinguished by its use of a curated methodology framework that links theoretical vulnerability patterns to real-world bug bounty reports and historical exploit examples. It includes a payload-based testing library and a reference system that maps specific vulnerability categories to recommended third-part
Provides guides for auditing infrastructure configurations, security headers, and server settings.
Bearer is a static analysis security testing tool and privacy compliance auditor. It identifies security vulnerabilities, hard-coded secrets, and privacy risks in source code through static analysis and data flow tracing. The tool distinguishes itself by tracking the movement of sensitive data through code to identify leaks and by mapping personal and health-related information flows to generate evidence for privacy impact assessments. It also provides differential scanning for pull requests and uses fingerprint-based suppression to exclude known false positives from reports. The platform co
Allows the definition of project-specific scanning logic to detect unique security or privacy patterns.