#Audit

Showing 60 of 130 repositories tagged #audit, ranked by stars

GoogleChrome
GoogleChrome
lighthouse

Automated auditing, performance metrics, and best practices for the web.

Score
100
★ 30.5k ⑂ 9.7k +11/day
JavaScript
gravitational
gravitational
teleport

The easiest, and most secure way to access and protect all of your infrastructure.

Score
100
★ 20.6k ⑂ 2.1k
Go
trimstray
trimstray
the-practical-linux-hardening-guide

This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).

Score
81
★ 10.6k ⑂ 668 +7/day
open-mmlab
open-mmlab
Amphion

Amphion (/æmˈfaɪən/) is a toolkit for Audio, Music, and Speech Generation. Its purpose is to support reproducible research and help junior researchers and engineers get started in the field of audio, music, and speech generation research and development.

Score
100
★ 9.9k ⑂ 821 +21/day
Python
aircrack-ng
aircrack-ng
aircrack-ng

WiFi security auditing tools suite

Score
100
★ 7.4k ⑂ 1.3k +9/day
C
rundeck
rundeck
rundeck

Enable Self-Service Operations: Give specific users access to your existing tools, services, and scripts

Score
100
★ 6.2k ⑂ 983 +9/day
Groovy
HotCakeX
HotCakeX
Harden-Windows-Security

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Personal, Enterprise, Government and Military security levels | SLSA Level 3 Compliant for Secure Development and Build Process | Apps Available on MS Store✨

Score
97
★ 4.5k ⑂ 320
C#
skerkour
skerkour
black-hat-rust

Applied offensive security with Rust - https://kerkour.com/black-hat-rust

Score
80
★ 4.4k ⑂ 434
Rust
intuitem
intuitem
ciso-assistant-community

CISO Assistant is a one-stop-shop GRC platform for Risk Management, AppSec, Compliance & Audit, TPRM, BIA, Privacy, and Reporting. It supports 150+ global frameworks with automatic control mapping, including ISO 27001, NIST CSF, SOC 2, CIS, PCI DSS, NIS2, DORA, GDPR, HIPAA, CMMC, and more.

Score
98
★ 4.2k ⑂ 774 +4/day
Python
Arachni
Arachni
arachni

Web Application Security Scanner Framework

Score
94
★ 4.0k ⑂ 785 +2/day
Ruby
FairwindsOps
FairwindsOps
polaris

Validation of best practices in your Kubernetes clusters

Score
67
★ 3.4k ⑂ 227
Go
gwen001
gwen001
pentest-tools

A collection of custom security tools for quick needs.

Score
75
★ 3.3k ⑂ 785
Python
inspec
inspec
inspec

InSpec: Auditing and Testing Framework

Score
95
★ 3.1k ⑂ 676 +1/day
Ruby
pwndoc
pwndoc
pwndoc

Pentest Report Generator

Score
92
★ 2.9k ⑂ 511 +4/day
JavaScript
0x6d69636b
0x6d69636b
windows_hardening

HardeningKitty and Windows Hardening Settings

Score
90
★ 2.6k ⑂ 328
PowerShell
OWASP
OWASP
masvs

The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.

Score
87
★ 2.4k ⑂ 700 +5/day
Python
Shopify
Shopify
kubeaudit

kubeaudit helps you audit your Kubernetes clusters against common security controls

Score
82
★ 1.9k ⑂ 189
Go
coinspect
coinspect
learn-evm-attacks

🚀 Try the Learn EVM Explorer we just launched!!!

Score
85
★ 1.8k ⑂ 235
Solidity
scipag
scipag
HardeningKitty

HardeningKitty - Checks and hardens your Windows configuration

Score
66
★ 1.8k ⑂ 210
PowerShell
jimmy201602
jimmy201602
webterminal

ssh rdp vnc telnet sftp bastion/jump web putty xshell terminal jumpserver audit realtime monitor rz/sz 堡垒机 云桌面 linux devops sftp websocket file management rz/sz otp 自动化运维 审计 录像 文件管理 sftp上传 实时监控 录像回放 网页版rz/sz上传下载/动态口令 django

Score
91
★ 1.7k ⑂ 563
Python
trycompai
trycompai
comp

AI Native platform to get companies compliant - Vanta & Drata Alternative

Score
89
★ 1.7k ⑂ 338
TypeScript
bamlab
bamlab
flashlight

📱⚡️ Lighthouse for Mobile - audits your app and gives a performance score to your Android apps (native, React Native, Flutter..). Measure performance on CLI, E2E tests, CI...

Score
100
★ 1.6k ⑂ 48
TypeScript
liggitt
liggitt
audit2rbac

Autogenerate RBAC policies based on Kubernetes audit logs

Score
64
★ 1.1k ⑂ 81
Go
Arudjreis
Arudjreis
awesome-security-GRC

Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).

Score
68
★ 1.1k ⑂ 206 +3/day
Ullaakut
Ullaakut
nmap

Idiomatic nmap library for go developers

Score
82
★ 1.0k ⑂ 118 +2/day
Go
ovh
ovh
debian-cis

PCI-DSS compliant Debian 11/12 hardening

Score
84
★ 1.0k ⑂ 170
Shell
enlightn
enlightn
enlightn

Your performance & security consultant, an artisan command away.

Score
60
★ 984 ⑂ 106
PHP
jiangsir404
jiangsir404
Audit-Learning

记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获

Score
61
★ 980 ⑂ 166
bytedance
bytedance
g3

Enterprise-oriented Generic Proxy Solutions

Score
60
★ 887 ⑂ 80 +3/day
Rust
dev-sec
dev-sec
linux-baseline

DevSec Linux Baseline - InSpec Profile

Score
79
★ 875 ⑂ 194
Ruby
tamjid0x01
tamjid0x01
SmartContracts-audit-checklist

A checklist of things to look for when auditing Solidity smart contracts.

Score
56
★ 797 ⑂ 129
softstack
softstack
Smart-Contract-Security-Audits

Certified Smart Contract Audits for Ethereum, Solana, Near, Cardano, Aptos, Sui, Binance Smart Chain, Fantom, EOS, Tezos and more

Score
100
★ 795 ⑂ 398 +1/day
HTML
opengovern
opengovern
opensecurity

opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.

Score
50
★ 716 ⑂ 29
TypeScript
projectwallace
projectwallace
wallace-cli

Pretty CSS analytics on the CLI

Score
86
★ 634 ⑂ 15
TypeScript
0xMacro
0xMacro
awesome-solana-security

A collection of resources to help you build better and more secure Solana programs. Kept up to date.

Score
40
★ 598 ⑂ 70
TechRate
TechRate
Smart-Contract-Audits

Smart Contract security audit reports

Score
77
★ 577 ⑂ 141 +1/day
rohitcoder
rohitcoder
hawk-eye

A powerful scanner to scan your Filesystem, S3, MySQL, Redis, Google Cloud Storage and Firebase storage for PII and sensitive data.

Score
76
★ 498 ⑂ 56
Python
sandworm-hq
sandworm-hq
sandworm-audit

Security & License Compliance For Your App's Dependencies 🪱

Score
35
★ 475 ⑂ 7
JavaScript
pwndoc-ng
pwndoc-ng
pwndoc-ng

Pentest Report Generator

Score
65
★ 454 ⑂ 109
JavaScript
CervantesSec
CervantesSec
cervantes

Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.

Score
73
★ 442 ⑂ 69 +1/day
C#
paradigmxyz
paradigmxyz
evmbench

A benchmark and harness for finding and exploiting smart contract bugs

Score
74
★ 434 ⑂ 68 +5/day
TypeScript
crev-dev
crev-dev
crev

Socially scalable Code REView and recommendation system that we desperately need. See http://github.com/crev-dev/cargo-crev for real implemenation.

Score
34
★ 428 ⑂ 7
hubblestack
hubblestack
hubble

Hubble is a modular, open-source security compliance framework. The project provides on-demand profile-based auditing, real-time security event notifications, alerting, and reporting.

Score
40
★ 385 ⑂ 84
Python
tarraschk
tarraschk
richelieu

List of the most common French passwords

Score
42
★ 377 ⑂ 97
burpheart
burpheart
PHPAuditGuideBook

《PHP代码审计入门指南》 这本指南包含了我在学习PHP代码审计过程中整理出的一些技巧和对漏洞的一些理解

Score
32
★ 353 ⑂ 27
kexa-io
kexa-io
Kexa

Kexa's simple rules (Open Source) make it easy to monitoring and manage alerting of your entire cloud. With various monitoring and alerting options, instant and detailed alerts, easy-to-deploy and low in infrastructure costs, in turns complexity into simplicity.

Score
69
★ 350 ⑂ 13
TypeScript
OffcierCia
OffcierCia
tips-solidity-code-auditors

Gaining the most elusive of tips. Add your input and let's collect them all!

Score
68
★ 349 ⑂ 36
padok-team
padok-team
yatas

:owl::mag_right: A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration

Score
71
★ 341 ⑂ 28
Go
TradMod
TradMod
awesome-audits-checklists

A curated list of smart contracts security audits checklists and resources.

Score
95
★ 325 ⑂ 59
adshao
adshao
flounder

Autonomous white-hat security auditor for AI-driven code review, bug bounty research, exploit construction, and execution-grounded verification.

Score
100
★ 309 ⑂ 50 +37/day
TypeScript
squirrelscan
squirrelscan
squirrelscan

Website auditing tool built for your agent and llm workflow.

Score
71
★ 242 ⑂ 9 +5/day
Shell
byterocket
byterocket
c4udit

Static analyzer for solidity contracts based on regexs specifically crafted for code4rena contests

Score
64
★ 237 ⑂ 39
Go
krisnova
krisnova
xpid

Linux Process Discovery. C Library, Go bindings, Runtime.

Score
29
★ 223 ⑂ 14
Go
voorhoede
voorhoede
lighthouse-security

Runs the default Google Lighthouse tests with additional security tests

Score
0
★ 198 ⑂ 13
JavaScript
solidified-platform
solidified-platform
audits

Audits performed by Solidified

Score
59
★ 183 ⑂ 41 +1/day
actions-rs
actions-rs
audit-check

🛡️ GitHub Action for security audits

Score
20
★ 176 ⑂ 46
TypeScript
mikestead
mikestead
lighthouse-batch

Run Lighthouse analysis over multiple sites in a single command

Score
14
★ 166 ⑂ 44
JavaScript
gebruder
gebruder
wirken

The switchboard for the agent era. Per-channel isolation, encrypted credential vault, per-session hash-chained audit log. Single static Rust binary.

Score
63
★ 156 ⑂ 2 +1/day
Rust
byterocket
byterocket
c4-common-issues

A collection of common security issues and possible gas optimizations in solidity smart contracts

Score
41
★ 153 ⑂ 22
Faillapop
Faillapop
faillapop

Vulnerable-by-design solidity protocol to help Web3 security enthusiasts practice their skills in an environment closer to real live.

Score
36
★ 150 ⑂ 11
Solidity
Related Topics
#security#compliance#ethereum#solidity#security-audit#smart-contracts#hacking#rust#penetration-testing#evm#kubernetes#hardening

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly