Open Source Tinker #36
running secure and intelligent services with the help of open source tools
After all the js frameworks built by folks, a very passionate community is for open source security and intelligence tools. It has a major advantage over proprietary tools for being community driven & transparent so any one can see, validate and contribute to a better version.
Bitwarden and OWASP Zap are two great examples of such tools.
pi-hole by pi-hole
The Pi-hole® is a DNS sinkhole that protects your devices from unwanted content without installing client-side software.
Instead of browser plugins or other software on each computer, install Pi-hole in one place and your entire network is protected.
Network-level blocking allows you to block ads in non-traditional places such as mobile apps and smart TVs, regardless of hardware or OS.
💻: Shell
⭐ 35.5k 👀 706 🍴 2.2k | Contribute: 🚧 34
spiderfoot by @binarypool
SpiderFoot is an open-source intelligence (OSINT) automation tool. It integrates with just about every data source available and utilises a range of methods for data analysis, making that data easy to navigate.
SpiderFoot has an embedded web server for providing a clean and intuitive web-based interface but can also be used completely via the command line. It's written in Python 3 and GPL-licensed.
💻: Python
⭐ 7.6k 👀 310 🍴 1.5k | Contribute: 🚧 104
zaproxy by @zaproxy
The OWASP Zed Attack Proxy (ZAP) is one of the world’s most popular free security tools and is actively maintained by a dedicated international team of volunteers.
It can help you automatically find security vulnerabilities in your web applications while you are developing and testing your applications. It's also a great tool for experienced pen-testers to use for manual security testing.
💻: Java
⭐ 9.4k 👀 387 🍴 1.9k | Contribute: 🚧 711
vuls by future-architect
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Vuls v0.5.0 now possible to detect vulnerabilities that patches have not been published from distributors
Fast scan mode scans without root privilege, no internet access, almost no load on the scan target server. Deep scan mode scans in more detail.
💻: Go
⭐ 9.1k 👀 345 🍴 1k | Contribute: 🚧 75
hubble by @ciliumproject
Hubble is a fully distributed networking and security observability platform for cloud-native workloads. It is built on top of Cilium and eBPF to enable deep visibility into the communication and behaviour of services as well as the networking infrastructure in a completely transparent manner.
Learn more about eBPF here.
💻: Go
⭐ 1.9k 👀 53 🍴 136 | Contribute: 🚧 46
Do you know a great open source project? tell us !!
Talk of the week
What is eBPF
eBPF is a revolutionary technology with origins in the Linux kernel that can run sandboxed programs in an operating system kernel. It is used to safely and efficiently extend the kernel's capabilities without requiring to change kernel source code or load kernel modules.