Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/theodo-group/awesome-security-automation

Awesome links to automate your cybersecurity checks
https://github.com/theodo-group/awesome-security-automation

List: awesome-security-automation

security security-audit security-automation security-tools

Last synced: about 1 month ago
JSON representation

Awesome links to automate your cybersecurity checks

Host: GitHub
URL: https://github.com/theodo-group/awesome-security-automation
Owner: theodo-group
Created: 2023-10-03T17:02:33.000Z (about 1 year ago)
Default Branch: main
Last Pushed: 2024-03-08T15:19:50.000Z (9 months ago)
Last Synced: 2024-05-23T02:04:20.869Z (7 months ago)
Topics: security, security-audit, security-automation, security-tools
Homepage:
Size: 9.77 KB
Stars: 23
Watchers: 2
Forks: 2
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# Awesome Security Automation

Great links to automate your cybersecurity checks.

## Awesome Code Analysis

- [Semgrep](https://github.com/returntocorp/semgrep): Easy tool to run on your code to detect usual security vulnerabilities.
- [Bearer](https://github.com/Bearer/bearer): A developer-first code security & privacy scanner that seamlessly integrates into your entire development (Local, CI/CD, PR/MR).

## Awesome Access Control Check

- [ACCENT](https://github.com/theodo/accent): It is a Symfony command to check that all your API Platform routes have an access control.
- [django-access-inspector](https://github.com/BastienTeissier/django-access-inspector): It is a comprehensive access control app for Django that helps you enforce fine-grained access control on your views.
- [spring-access-inspector](https://github.com/marine-mb/spring-access-inspector): This tool creates a table report to verify access control on Spring Boot routes. It uses the Preauthorize annotation from spring-security-config.

## Awesome XSS prevention tools

- [RisXSS](https://github.com/theodo/RisXSS): It detects XSS flaws of your React or Vue application using a single ESLint rule.

## Awesome secret leak tools

- [git-secret-scanner](https://github.com/padok-team/git-secret-scanner): This tool aims to find secrets and credentials in git repositories owned by Organizations or Groups using the best parts of TruffleHog & Gitleaks libraries.
- [gitlab-secrets](https://github.com/RichardoC/gitlab-secrets): Even after a force-push to delete secrets unwanted in the code, those commits still exist even if they aren't referenced. This tool aims to find those secrets
- [youtube-video-scanner](https://gitlab.com/gitlab-com/gl-security/security-research/video-scanner/youtube-video-scanner): This tool detects secrets shown during videos by analizing the frames.

## Awesome CVEs tools

- [Renovate](https://github.com/renovatebot/renovate): This tool creates Pull Requests to update your vulnerable dependencies and gives you a percentage of confidence about breaking changes.
- [Dependat-bot](https://github.com/dependabot/dependabot-core): Just like Renovate, this tool creates Pull Requests to update your vulnerable dependencies. It works better with Github than with other platforms.

## Awesome AWS security tools

- [sls-mentor](https://github.com/sls-mentor/sls-mentor): It is a tool that analyzes the configuration of your AWS resources against best practice rules. It also helps with other metrics than security, such as Performance or Cost.
- [Yatas](https://github.com/padok-team/yatas-aws): It helps you create a secure AWS environment without too much hassle.
- [cognito scanner](https://github.com/padok-team/cognito-scanner): Check that your cognito configuration is not vulnerable to standard attacks