kics
Vulnerability scanner
A tool for detecting security vulnerabilities and compliance issues in infrastructure-as-code projects
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
2k stars
27 watching
315 forks
Language: Open Policy Agent
last commit: 2 months ago
Linked from 7 awesome lists
appseccloudnativedevsecopsgolanghacktoberfestiacinfrastructure-as-codeopen-policy-agentsecuritysecurity-toolsvulnerability-detectionvulnerability-scanners
veggiemonk/awesome-docker
sbilly/awesome-security
shuaibiyy/awesome-tf
4ndersonlin/awesome-cloud-security
jakobthedev/awesome-devsecops
ansible-community/awesome-ansible
shospodarets/awesome-platform-engineeringRelated projects:
| Repository | Description | Stars |
|---|---|---|
 bridgecrewio/checkov | An automated tool for identifying security and compliance vulnerabilities in cloud infrastructure and software packages. | 7,214 |
| checkmarx/chainjacking | A tool to identify susceptible dependencies in Go projects | 56 |
 menkrep1337/xsscon | A tool designed to scan websites for Cross-Site Scripting (XSS) vulnerabilities | 214 |
 tenable/terrascan | Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. | 4,779 |
 kathanp19/gaussrf | A tool for identifying potential vulnerabilities in websites by fetching known URLs and filtering out ones with open redirects or SSRF parameters. | 168 |
 nmilcoff/breachdetector | A tool for detecting and analyzing security vulnerabilities in Xamarin mobile applications | 89 |
 openscanner/xguardian | A security scanner for OSX applications that detects potential vulnerabilities in URL scheme hijack, bundle ID hijack, and keychain hijack. | 41 |
 cert-polska/artemis | A modular vulnerability scanner with automatic report generation capabilities. | 572 |
 r0075h3ll/oralyzer | A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. | 758 |
 lirantal/is-website-vulnerable | A tool that scans websites for publicly known security vulnerabilities in their frontend JavaScript libraries. | 1,942 |
 raz0r/aemscan | A tool to scan Adobe Experience Manager websites for vulnerabilities and identify potential security risks. | 182 |
 m0nad/hellraiser | Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API | 562 |
 moduscreateorg/beep | An account security scanner that detects vulnerabilities in online accounts by hashing credentials and checking against data breaches. | 157 |
 g3rzi/hackingkubernetes | A collection of information and resources to help attackers explore vulnerabilities in Kubernetes clusters. | 100 |