Displaying 1 to 14 from 14 results

DeepFence - Identify vulnerabilities in running containers, images, hosts and repositories

  •    Go

Deepfence ThreatMapper helps you to monitor and secure your running applications, in Cloud, Kubernetes, Docker, and Fargate Serverless. ThreatMapper scans your platforms and identifies pods, containers, applications, and infrastructure. Use ThreatMapper to discover the topology of your applications and attack surface. It obtains manifests of dependencies from running pods and containers, serverless apps, applications, and operating system. ThreatMapper matches these against vulnerability feeds to identify vulnerable components.

PatrowlManager - PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

  •    HTML

To try PatrOwl, install it by reading the Installation Guide and the User Guide. Fully-Developed in Python, PatrOwl is composed of a Front-end application PatrowlManager (Django) communicating with one or multiple PatrowlEngines micro-applications (Flask) which perform the scans, analyze the results and format them in a normalized way. It remains incredibly easy to customize all components. Asynchronous tasks and engine scalability are supported by RabbitMQ and Celery. The PatrowlManager application is reachable using the embedded WEB interface or using the JSON-API. PatrowlEngines are only available through generic JSON-API calls (see Documentation).

terraform-aws-cloudwatch-flow-logs - Terraform module for enabling flow logs for vpc and subnets.

  •    HCL

Terraform module for enabling flow logs for vpc and subnets. This project is part of our comprehensive "SweetOps" approach towards DevOps.




PatrowlDocs - PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

  •    HTML

PatrOwl is a scalable, free and open-source solution for orchestrating Security Operations. PatrowlManager is the Front-end application for managing the assets, reviewing risks on real-time, orchestrating the operations (scans, searches, API calls, ...), aggregating the results, relaying alerts on third parties (ex: Incident Response platform like TheHive, SIEM, ...) and providing the reports and dashboards. PatrowlEngines is the engine framework and the supported list of engines performing the operations (scans, searches, API calls, ...) on due time.

PatrowlEngines - PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

  •    Python

PatrOwl is a scalable, free and open-source solution for orchestrating Security Operations. PatrowlEngines is the engine framework and the supported list of engines performing the operations (scans, searches, API calls, ...) on due time. The engines are managed by one or several instance of PatrowlManager.

PatrowlHears - PatrowlHears - Vulnerability Intelligence Center / Exploits

  •    Python

PatrOwl provides scalable, free and open-source solutions for orchestrating Security Operations and providing Threat Intelligence feeds. PatrowlHears is an advanced and real-time Vulnerability Intelligence platform, including CVE, exploits and threats news. To try PatrowlHears, install it by reading the Installation Guide.

certstream-slack - A small daemon that watches your domains in Certificate Transparency logs and posts them into Slack

  •    Go

SLACK_WEBHOOK_URL: a Slack incoming webhook URL. The Slack configuration controls the name of the bot and the channel into which it will post. Leave this unset to skip posting to Slack (log only, useful for debugging). DOMAIN_PATTERN: A Go regular expression. Certificates for domains that match this pattern will be posted to Slack. Consider watching your company's name and product names, for example: (mycompany)|(myproduct1)|(myproduct2).


LogESP - Open Source SIEM (Security Information and Event Management system).

  •    Python

LogESP is a SIEM (Security Information and Event Management system) written in Python Django. It features a web frontend, and handles log management and forensics, risk management, and asset management. LogESP was designed and built as a security application, and minimalism can be good for security.

siemstress - Very basic CLI SIEM (Security Information and Event Management system).

  •    Python

Siemstress is a lightweight but powerful security information and event management (SIEM) system. It uses a database and a suite of CLI tools for managing log events, and automating event analysis. It comes with four programs: siemparse, siemquery, siemtrigger, and siemmanage. Siemstress is designed to parse data, and organize it into prioritized, manageable streams of relevant information. The goal is a streamlined open source information management system that embodies unix design principles. It should be simple, modular, and useful beyond its original scope.

gsvsoc_cybersecurity-incident-response-plan - Cybersecurity Incident Response Plan

  •    

A cybersecurity incident response plan (IRP) to help responders with the tactical aspects of incident response. This document applies to all individuals (Personnel) responsible or involved with cybersecurity incident response activities. Personnel shall be informed of this document by the organization's Information Security Office or Officer(s) (ISO).

gsvsoc_mission-model - Incident Response Report Using GitHub-Sphinx

  •    

GuardSight analysts use a systematic approach to achieve the objectives of containment, eradication, and recovery during its BreachMasters™ incident response. One component of this approach includes developing content iteratively, in the style of journaling, to describe the adversary compromise as well as the allied response. The aggregated journal content ultimately results in an after action report. Producing the report documentation while conducting the response activities has many benefits including memorializing in near real-time, the increased accuracy of observations and collections, and improved precision of knowledge transfers when transitioning between analysts to manage response fatigue. This document discusses a mechanism for developing the incident response content using the revision control hosting system Github, use of the Sphinx documentation generator, and the optional use of the software hosting system Read the Docs.






We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.