Displaying 1 to 17 from 17 results

MozDef - MozDef: The Mozilla Defense Platform

  •    Javascript

The inspiration for MozDef comes from the large arsenal of tools available to attackers. Suites like metasploit, armitage, lair, dradis and others are readily available to help attackers coordinate, share intelligence and finely tune their attacks in real time. Defenders are usually limited to wikis, ticketing systems and manual tracking databases attached to the end of a Security Information Event Management (SIEM) system.The Mozilla Defense Platform (MozDef) seeks to automate the security incident handling process and facilitate the real-time activities of incident handlers.

boulder - An ACME-based CA, written in Go.

  •    Go

This is an implementation of an ACME-based CA. The ACME protocol allows the CA to automatically verify that an applicant for a certificate actually controls an identifier, and allows domain holders to issue and revoke certificates for their domains.Boulder has a Dockerfile to make it easy to install and set up all its dependencies. This is how the maintainers work on Boulder, and is our main recommended way to run it.

H5SC - HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors

  •    Javascript

Pull requests welcome, we store the files in the /attachments sub-folder.

Libcurve - An encryption and authentication library for ZeroMQ applications

  •    C

Curve implements the CurveZMQ elliptic curve security mechanism, for use in ZeroMQ applications. This library is primarily a reference implementation for the CurveZMQ specification but may also be used for end-to-end security. CurveZMQ creates encrypted sessions ("connections") between two peers using short term keys that it securely exchanges using long term keys. When the session is over, both sides discard their short term keys, rendering the encrypted data unreadable, even if the long term keys are captured. It is not designed for long term encryption of data.




vault-ruby - The official Ruby client for HashiCorp's Vault

  •    Ruby

Vault is the official Ruby client for interacting with Vault by HashiCorp.The documentation in this README corresponds to the master branch of the Vault Ruby client. It may contain unreleased features or different APIs than the most recently released version. Please see the Git tag that corresponds to your version of the Vault Ruby client for the proper documentation.

shavar - Phishing protection update protocol service

  •    Python

By default the service listens on port the loopback interface, port 6543. If you want to change this, modify the values in the INI file's [server:main] section.The shavar service serves changes to a set of hashes of canonicalized URLs. Basic configuration consists of specifying the names of the lists to be served and a section for each of those lists declaring at least the two minimum required configuration directives for each list.


pfp - Manage your passwords easily and securely, via browser extension for Firefox, Chrome, Opera or Edge

  •    Javascript

PfP: Pain-free Passwords is a Firefox, Chrome, Opera and Edge password manager. Most passwords will be generated for a specific site and account from your master password whenever needed, these passwords are never stored on disk and can be recreated easily if data is lost. For passwords that cannot be changed for some reason, storing the password with the extension data is also supported. All extension data is safely encrypted. You can also omit the --private-key parameter, an unsigned ZIP file will be created then which can be uploaded to Chrome Web Store or Opera Add-ons.

linux-patch-baseline - DevSec Linux Patch Baseline - InSpec Profile

  •    Ruby

This InSpec profile verifies that all updates have been installed on a RedHat/CentOS/Ubuntu machine. It uses the local package manager to determine the available packages.

windows-patch-baseline - DevSec Windows Patch Baseline - InSpec Profile

  •    Ruby

If you require a graphical user interface Chef Compliance helps you to visualize the information.

autowire - Automatically configure Wireguard interfaces in distributed system

  •    Go

This project is at an early stage development and is not production ready even though we're running it in our production. Run it at your own risk. Run WireGuard VPN with zero configuration.

decker - Declarative penetration testing orchestration framework

  •    Go

Decker is a penetration testing orchestration framework. It leverages HashiCorp Configuration Language 2 (the same config language as Terraform) to allow declarative penetration testing as code, so your tests can be versioned, shared, reused, and collaborated on with your team or the community. Several output formats are available and more than one can be selected at the same time.

jPurify - jPurify

  •    Javascript

Warning: This tool is experimental and currently not maintained. Don't use it in production. jPurify is a plugin that automatically adds XSS-safety to jQuery. The reason why we do that is jQuery's lack of DOMXSS protection. We wanted to create a jQuery plugin, that adds super-easy-to-use and fully automatic HTML sanitation to the whole jQuery API. jPurify has been tested with jQuery 1.11.1 and 2.1.1. It's known to work well down until jQuery 1.5.2.

bearded-avenger - CIF v3 -- the fastest way to consume threat intelligence

  •    Python

Do NOT try to install from the master repo. For installation instructions and various unix distribution guides, use the DeploymentKit.

csirtg-smrt-py - the fastest way to consume threat intelligence.

  •    Python

Parse data using simple YAML and throw it just about anywhere. If you've never worked on a GitHub project, this is a good piece for getting started.