A curated list of awesome Go frameworks, libraries and software

The Cloud Native Application Proxy

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Talos Linux is a modern Linux distribution built for Kubernetes.

The Havoc Framework

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

The Swiss Army knife for automated Web Application Testing

Automating situational awareness for cloud penetration tests.

Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and private keys.

Community curated list of public bug bounty and responsible disclosure programs.

A tool to capture all the git secrets by leveraging multiple open source git searching tools

Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to…

EndExt is a .go tool for extracting all the possible endpoints from the JS files

Larry 🐦 is a bot generator that post content from different providers to one or multiple publishers