Displaying 1 to 16 from 16 results

secureheaders - Manages application of security headers with many safe defaults

  •    Ruby

master represents the unreleased 4.x line. See the upgrading to 4.x doc for instructions on how to upgrade. Bug fixes should go in the 3.x branch for now.The 3.x branch is moving into maintenance mode. See the upgrading to 3.x doc for instructions on how to upgrade including the differences and benefits of using the 3.x branch.

secure_headers - Manages application of security headers with many safe defaults

  •    Ruby

master represents 6.x line. See the upgrading to 4.x doc, upgrading to 5.x doc, or upgrading to 6.x doc for instructions on how to upgrade. Bug fixes should go in the 5.x branch for now. The 3.x branch is moving into maintenance mode. See the upgrading to 3.x doc for instructions on how to upgrade including the differences and benefits of using the 3.x branch.

testssl.sh - Testing TLS/SSL encryption anywhere on any port

  •    Shell

testssl.sh is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as some cryptographic flaws. Or help yourself downloading the ZIP archive https://github.com/drwetter/testssl.sh/archive/2.9dev.zip. testssl.sh --help will give you some help upfront. More help: see doc directory with man pages. Older sample runs are at https://testssl.sh/.




HTTP Strict Transport Security IIS Module

  •    

A module for IIS which enables HTTP Strict Transport Security compliant with the HSTS Draft Specification (RFC 6797).

hstspreload.org - :lock: Chromium's HSTS preload list submission website.

  •    Go

This folder contains the source for the HSTS preload list submission website at hstspreload.org. See github.com/chromium/hstspreload for the core library that checks websites against the submission requirements.

yes-https - Say yes to https with express and connect.

  •    Javascript

yes-https is a happy little npm module that makes it easy to require https for your connect based application.


fastify-helmet - Important security headers for Fastify

  •    Javascript

Simply require this plugin, and the basic security headers will be set. fastify-helmet is a collection of 12 smaller middleware functions that set HTTP headers. Running fastify.register(helmet) will not include all of these middleware functions by default.

Lib

  •    CSharp

You can get Lib.AspNetCore.Security and Lib.AspNetCore.Mvc.Security from NuGet. The documentation is available here.

Lib

  •    CSharp

Lib.Web.Mvc is a library which contains some helper classes for ASP.NET MVC such as strongly typed jqGrid helper, attribute and helper providing support for HTTP/2 Server Push with Cache Digest, attribute and helpers providing support for Content Security Policy Level 2, FileResult providing support for Range Requests, action result and helper providing support for XSL transformation and more. Lib.Web.Mvc is available on NuGet.

hstspreload - 🔒🔍 A Go package to scan sites against requirements for Chromium-maintained HSTS preload list

  •    Go

HSTS is HTTP Strict Transport Security, which is a policy system for web sites to express a desire only to be contacted over HTTPS. See https://github.com/chromium/hstspreload.org for the submission site code.

PRISM-AP - An automated Wireless RogueAP MITM attack framework.

  •    Shell

PRISM-AP is an automated Wireless RogueAP MITM attack framework. This script is distributed "as is" and no support will be provided in it's current state (not intended for beginners).

KatWeb - A lightweight static web server and reverse proxy designed for the modern web.

  •    Go

To download KatWeb, you can either download a packaged release from the releases page, or compile KatWeb from the source code in the repository (not recommended, code in the repository is not suitable for production use). After you have extracted the compressed release, you can run the right build for your platform. The root folder for serving files is /html/, the configuration is /conf.json. Documentation for KatWeb can be found on the KatWeb Wiki.

sensu-plugins-ssl - This plugin provides native SSL instrumentation for monitoring, including: hostname and chain verification, cert expiry, and Qualys SSL Labs reporting

  •    Ruby

Check that a specific website is chained to a specific root certificate (Let's Encrypt for instance). Checks a CRL has not or is not expiring by inspecting it's next update value.