verto.sh

🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.

🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

Free and Open Source Reverse Engineering Platform powered by rizin

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

The ZAP by Checkmarx Core project

Light LDAP implementation

Free and open log management

Infisical is the open-source platform for secrets management, PKI, and SSH access.

eBPF-based Security Observability and Runtime Enforcement

Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

The only web-scale, fully customizable OpenID Certified™ OpenID Connect and OAuth2 Provider in the world. Become an OpenID Connect and OAuth2 Provider over night. Written in Go, cloud native, headless, API-first. Available as a service on Ory Network and for self-hosters. Relied upon by OpenAI and others for web-scale security.

ContainerSSH: Launch containers on demand

Cloud Native Runtime Security

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more