Do you like this software? Star the project and become a stargazer. Lynis - Security auditing and hardening tool, for UNIX-based systems.
shell pci-dss compliance security-audit security-hardening security-scanner security-vulnerability hipaa unix vulnerability-detection vulnerability-scanners vulnerability-assessment devops devops-tools system-hardening hardening auditing gdpr security-toolsThis package will help you understand changes in your Eloquent models, by providing information about possible discrepancies and anomalies that could indicate business concerns or suspect activities. Laravel Auditing allows you to keep a history of model changes by simply using a trait. Retrieving the audited data is straightforward, making it possible to display it in various ways.
laravel auditing audit lumen eloquent revision logging record tracking observer historyThe Windows Secure Host Baseline (SHB) provides an automated and flexible approach for assisting the DoD in deploying the latest releases of Windows 10 using a framework that can be consumed by organizations of all sizes. Formal product evaluations also support the move to Windows 10. The National Information Assurance Partnership (NIAP) and National Institute of Standards and Technology (NIST) oversees evaluations of commercial IT products for use in National Security Systems.
auditing certificates chrome-browser audit windows-10 windows-server compliance nessus group-policy applocker internet-explorer windows-firewall microsoft-office windows-server-2016 adobe-readerRanger is a framework to enable, monitor and manage comprehensive data security across the Hadoop platform. It provides centralized security administration to manage all security related tasks in a central UI or using REST APIs, Fine grained authorization, Centralize auditing of user access within Apache Hadoop, Apache Hive, Apache HBase and other Apache components.
hadoop-tools security hadoop-security auditing data-securityA tiny web auditor with strong opinions. You'll need bash 4, curl, dig, and nc, along with a fairly POSIX system.
security web-security auditingChange data capture helper for SQL Server 2008 It's developed in C#
auditing cdc change-data-capture code-compilerT-SQL codegen script that creates audit trail triggers for SQL Server 2005 / 2008. Back-out procs, view to deleted rows, & rowhistroy function. Version 2 adds user context, SQL stmt, insert log, and base table DDL options. by SQL Server MVP Paul Nielsen. 4 yrs of bug fixes.
audit audit-trail audit-triggers auditing autoaudit data-auditing data-historyA PowerShell module that provides some additional functions to enhance PowerShell Eventing in relation to Windows Event Log events. Subscriptions can be made and actions taken when new events are written to a log. In a sense, this can be used as "poor mans" auditing system.
audit auditing eventing eventlog events forwardedevents moduleAuditDbContext provides entity change auditing for Entity Framework POCO entities.
audit auditing dbcontext entity-frameworkSSH Piper works as a proxy-like ware, and route connections by username, src ip , etc.
ssh ssh-connection reverse-proxy two-factor-authentication auditing google-authenticatorFor checking what collaborators, hooks, deploy keys, and protected branches you have added on all your GitHub repositories. This also scans all an organization's repos you have permission to view. Because nobody has enough RAM in their brain to remember this stuff for 100+ repos. Check out genuinetools/pepper for setting all your GitHub repo's master branches to be protected. Pepper even has settings for organizations and a dry-run flag for the paranoid.
github git auditing security repos repo cliThe main assumption of creating this tool was easier and faster delivery of commands sets to be performed on customer environments. As a result of such a scan I wanted to get the most useful information about system components that will be subjected to penetration tests and audits at a later time. Otseca facilitates collection of many important information about a given system.
system system-config system-information pentesting auditing information-gathering system-analysis security-audit security-tools dump cybersecurity reporting html-reportThis plugin allows you to run Lighthouse from a Webpack build. If you require even more data, you can also pass saveArtifacts: true.
lighthouse webpack lighthouse-audits performance progressive-web-apps auditing time-to-interactive tti first-meaningful-paint performance-metrics performance-auditsParent pom module for rudder project
configuration-management automation compliance continuous-configuration devops continous-auditing auditingThis is a collection of many tools, scripts, cheatsheets and other loots that I've been developing over years for penetration testing and IT Security audits purposes. Many of them actually had been used during real-world assignments, some of them are a collection gathered from various sources (waiting to be used someday). This repository does not contain actual exploits. These I will release under separate repository in some point in future.
penetration-testing penetration testing tools scripts cheatsheets exploit social-engineering networks auditingThis repository aims to host the versioned and authoritative source data for the OWASP ASVS project. In order to build on top of this data a strict and normalized format was required ( unlike say storing everything in MarkDown or HTML) as it's much easier to remove strictness then to add it. There are many data serialization formats, those with broad support include: XML, CSV and YAML.
owasp aasvs security auditingIt's designed so that you can run ssh-auditor discover + ssh-auditor scan from cron every hour to to perform a constant audit.
ssh brute-force auditing security discoverAccessibility auditing for Vue.js applications by running dequelabs/axe-core validation on the page your viewing, axe-core will run 1 second after the last VueJS update (with a 5 seconds debounce max wait). Package inspired by dequelabs/react-axe.
accessibility a11y vue.js test auditingTool to make best effort to log conntrack flows along with associated pids, which service cgroup they belong to and misc other info about them. Think of it as an auditd extension to log network connections.
conntrack libnetfilter-conntrack netlink-sockets cffi network-monitoring auditingSet of scripts to allow selective dumping of packets with netfilter NFLOG module and sending of these over zeromq channel to remote host (producing pcap stream there) for analysis. Use-case is sending traffic to Snort IDS on a remote machine with some pre-filtering (with iptables, since it's generally faster, simplier and more flexible than BPF or userspace filters) to exclude encrypted and irrelevant traffic (like raw VPN/IPSec packets and p2p).
nflog zeromq pcap traffic-monitoring ids networking auditing sniffer
We have large collection of open source products. Follow the tags from
Tag Cloud >>
Open source products are scattered around the web. Please provide information
about the open source projects you own / you use.
Add Projects.