🕵️‍♂️ All-in-one OSINT tool for analysing any website

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024

♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI

Open Source Cloud Native Application Protection Platform (CNAPP)

Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent.

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit

Open Source Cloud Security

🛡️ The missing GraphQL security security layer for Apollo GraphQL and Yoga / Envelop servers 🛡️

Application secrets and configuration management for developers.

GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.

A Sliver GUI Client

EncryptStorage provide a little more security in frontend

Arcjet JS SDKs. Rate limiting, bot protection, email verification & attack defense for Node.js, Next.js, Bun & SvelteKit.

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝

A simple password manager with a twist.

Stalker, the Extensible Attack Surface Management tool.

🐸 Scans any of your local Docker images for security vulnerabilities. 🐋