security-audit topic
RSPET
RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.
awesome-security-audits
A collection of public security audits.
kccss
Kubernetes Common Configuration Scoring System
kube-scan
kube-scan: Octarine k8s cluster risk assessment tool
opencspm
Open Cloud Security Posture Management Engine
nebulousAD
NebulousAD automated credential auditing tool.
dradis-ce
Dradis Framework: Collaboration and reporting for IT Security teams
packj
Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
yawast
YAWAST ...where a pentest starts. Security Toolkit for Web-based Applications
repo-security-scanner
CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys