preflight
Vulnerability scanner
A tool to verify scripts and executables against known vulnerabilities to prevent chain of supply attacks
preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.
153 stars
6 watching
45 forks
Language: Go
last commit: almost 2 years ago
Linked from 2 awesome lists
devopsdevsecopsgolangsecurity
sbilly/awesome-security
jakobthedev/awesome-devsecopsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 americanexpress/earlybird | A tool that scans source code repositories for sensitive data vulnerabilities and weak practices | 708 |
 prevade/cloudjack | Checks AWS accounts for subdomain hijacking vulnerabilities | 84 |
 1n3/blackwidow | A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. | 1,526 |
 kathanp19/gaussrf | A tool for identifying potential vulnerabilities in websites by fetching known URLs and filtering out ones with open redirects or SSRF parameters. | 165 |
| spectralops/netz | Automated network scanner discovering internet-wide misconfigurations of network services. | 388 |
 pyupio/safety | Detects known security vulnerabilities in Python dependencies and provides recommendations for remediation. | 1,731 |
 sectooladdict/wavsep | An open-source tool for evaluating web application vulnerabilities by analyzing the separation of concerns in web applications. | 228 |
 checkmarx/kics | A tool for detecting security vulnerabilities and compliance issues in infrastructure-as-code projects | 2,093 |
 r0075h3ll/oralyzer | A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. | 753 |
 menkrep1337/xsscon | A tool designed to scan websites for Cross-Site Scripting (XSS) vulnerabilities | 210 |
 moduscreateorg/beep | An account security scanner that detects vulnerabilities in online accounts by hashing credentials and checking against data breaches. | 157 |
 hasecuritysolutions/vulnwhisperer | Automates vulnerability scan data aggregation and reporting for various security tools | 1,356 |
 twelvesec/rootend | A tool designed to automate the discovery and exploitation of security vulnerabilities in Unix systems. | 146 |
 boostsecurityio/poutine | Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. | 229 |