security-tools

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

Currently trivy can find package-lock.json and process it, looking for vulnerabilities. It would be nice if it could process pnpm-lock.yaml files too

@zricethezav

Describe the solution you'd like
I'd like to go back to using a CHANGELOG.md to track changes. This will be the first step in updating the ci/cd process to increase the frequency of patches/deploys.

Additional context
Go through https://github.com/zricethezav/gitleaks/releases and create a CHANGELOG.md file

cc @zricethezav

Hi & welcome to Scapy's github ! This page lists issues that you can try to fix if you want to start contributing to Scapy.

This list includes wishes and things added by the maintainers based on the issues that we get, but also issues marked with TODO or XXX that already exist in Scapy's code base (layers). If you want to contribute to the project you might just take care one of the bugs.

RustScan has an accessible mode, rustscan --accessible which should promise not to have any weird ASCII text in it.

Write CI that runs RustScan with --accessible a few times, with different flags / options and check the terminal output to see if it contains one of these:

[!]
[~]
[>]
| {}

If any of these characters appear in any of the tests, fail the CI. E

We need Vagrant docs, you can find it here https://github.com/NullArray/AutoSploit/tree/dev-beta/Vagrant

Describe the bug
In the docs found here:
https://bandit.readthedocs.io/en/latest/plugins/index.html#complete-test-plugin-listing

B109 and B111 show a description instead of a plugin name. This looks inconsistent since all the other plugin names are listed. I believe this is a result of a recent change to remove these deprecated plugins.

To Reproduce

Navigate to https://bandit

What would you like to be added

We can't query smallstep for anything related to certs because the only thing in the DB is the bytes of the cert. Storing the cert alongside more columns like the common name, not after date, and more, would let us enable more complex queries, and optimize performance for future use cases.

Why this is needed

Enable searching of Certificates signed by attrib

Hey, here we need add url decoding cuz that invalid link with symbols of get request like ?, &, = etc

p.s thx for awesome tool

Sep	OCT	Nov
	12
2020	2021	2022

security-tools

Here are 2,356 public repositories matching this topic...

CISOfy / lynis

aquasecurity / trivy

future-architect / vuls

zricethezav / gitleaks

qeeqbox / social-analyzer

secdev / scapy

smicallef / spiderfoot

fail2ban / fail2ban

toniblyx / my-arsenal-of-aws-security-tools

presidentbeef / brakeman

We5ter / Scanners-Box

guardicore / monkey

securego / gosec

RustScan / RustScan

1N3 / Sn1per

NullArray / AutoSploit

toniblyx / prowler

microsoft / ApplicationInspector

google / syzkaller

drk1wi / Modlishka

PyCQA / bandit

smallstep / certificates

What would you like to be added

Why this is needed

trimstray / htrace.sh

OlivierLaflamme / Cheatsheet-God

liamg / traitor

urbanadventurer / WhatWeb

yogeshojha / rengine

j3ssie / Osmedeus

mzet- / linux-exploit-suggester

k8gege / Ladon