142 Open Source Audit Software Projects
Free and open source audit code projects including engines, APIs, generators, and tools.
Googlechrome Lighthouse 20918 ⭐
Automated auditing, performance metrics, and best practices for the web.
The Practical Linux Hardening Guide 8368 ⭐
This guide details creating a secure Linux production system. OpenSCAP (C2S/CIS, STIG).
Rundeck Rundeck 3997 ⭐
Enable Self-Service Operations: Give specific users access to your existing tools, services, and scripts
Windows Secure Host Baseline 1256 ⭐
Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber
Webterminal 1049 ⭐
ssh rdp vnc telnet sftp bastion/jump web putty xshell terminal jumpserver audit realtime monitor rz/sz 堡垒机 云桌面 linux devops sftp websocket file management rz/sz otp 自动化运维 审计 录像 文件管理 sftp上传 实时监控 录像回放 网页版rz/sz上传下载/动态口令 django
Owasp Masvs 896 ⭐
The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.
Monitor Table Change With Sqltabledependency 409 ⭐
Get SQL Server notification on record table change
CSS Style Guide Audit 353 ⭐
Audit the CSS on a page to see what elements are using styles from the style guide and which styles are overriding them
Hardware And Firmware Security Guidance 354 ⭐
Guidance for the Spectre, Meltdown, Speculative Store Bypass, Rogue System Register Read, Lazy FP State Restore, Bounds Check Bypass Store, TLBleed, and L1TF/Foreshadow vulnerabilities as well as general hardware and firmware security guidance. #nsacyber
Hubblestack Hubble 293 ⭐
Hubble is a modular, open-source security compliance framework. The project provides on-demand profile-based auditing, real-time security event notifications, alerting, and reporting. HubbleStack is a free and open source project made possible by Adobe. https://github.com/adobe
Wordpress Simple History 208 ⭐
🔍🕵️♀️ WordPress audit log that track user changes in WordPress admin using a nice activity feed.
Electriceye 199 ⭐
Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
Vulny Code Static Analysis 185 ⭐
Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex
Gdpr Tracker 142 ⭐
A crowdsourced directory tracking the GDPR compliance of cloud services and subprocessors
Spring Backend Boilerplate 131 ⭐
The modularized backend boilerplate based on Spring Boot Framework, easy to get started and add your business part.
Beancounter 121 ⭐
Utility to audit the balance of Hierarchical Deterministic (HD) wallets. Supports multisig + segwit wallets.
Website Evidence Collector 86 ⭐
The tool Website Evidence Collector (WEC) automates the website evidence collection of storage and transfer of personal data. https://edps.europa.eu/press-publications/edps-inspection-software_en
Audit Log 82 ⭐
📑 Create audit logs into the database for user behaviors, including a web UI to query logs.
Splunk Assessment Of Mitigation Implementations 67 ⭐
Automatically scores how well Windows systems have implemented some of the top 10 Information Assurance mitigation strategies. #nsacyber
Drydock 60 ⭐
drydock provides a flexible way of assessing the security of your Docker daemon configuration and containers using editable audit templates
Inqry 51 ⭐
A robust, cross-platform inventory utility that generates a QR code containing system hardware specs.
Publisher Ads Lighthouse Plugin 47 ⭐
Publisher Ads Lighthouse Plugin is a tool to improve ad speed and overall quality through a series of automated audits. This tool will aid in resolving discovered problems, providing a tool to be used to evaluate effectiveness of iterative changes while suggesting actionable feedback.
Mkcheck 42 ⭐
Script to check MikroTik Routers for the WinBox Authentication Bypass Disclosure & RouterOS Jailbreak vulnerabilities
Pg_credereum 34 ⭐
Prototype of PostgreSQL extension bringing some properties of blockchain to the relational DBMS
Detect Cve 2017 15361 Tpm 32 ⭐
Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber
Responsibly 35 ⭐
Toolkit for Auditing and Mitigating Bias and Fairness of Machine Learning Systems 🔎🤖🧰
Spring Data Envers Audit Entity 24 ⭐
Sample application that demonstrates entity audit with revisions using Spring Data Envers
Scan Gradle Plugin 23 ⭐
Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Nexus IQ Server.
Multi Go 20 ⭐
A multi-tool made in Go, and aimed at security experts to make life a little more convenient
Audit Test Automation 20 ⭐
The Audit Test Automation Package gives you the ability to get an overview about the compliance status of several systems. You can easily create HTML-reports and have a transparent overview over compliance and non-compliance of explicit setttings and configurations in comparison to industry standards and hardening guides.
Domainaccessibilityaudit 21 ⭐
Web application to create domain and subdomain accessibility audits, with violation statistics.
Pg Audit JSon 20 ⭐
Simple, easily customised trigger-based auditing for PostgreSQL (Postgres). See also pgaudit.
Mysql Sp Audit 19 ⭐
Using trigger based stored procedure to create audit table. It follows the wordpress meta data approach to store the changes, so all the data is store in just two centalized tables.
Coloradorla 19 ⭐
Software to facilitate risk-limiting audits at the state level, developed for the state of Colorado.
Solidity Audit Checklist 19 ⭐
A checklist of things to look for when auditing Solidity smart contracts.
Chainsecurity Audits 17 ⭐
Subset of public audit reports issued by ChainSecurity. For more, please visit:
Alcideio Advisor 21 ⭐
Alcide Kubernetes Advisor ... Cluster Hygiene & Security Scanner - Pipeline Integration
Bitprices 13 ⭐
command-line tool that generates a report of transactions with the USD (fiat) value at the time of each transaction.