64 Resources
Golang audit-checks Libraries
This includes a library and set of utilities to deal with audit events.
auditevent A small and flexible library to help you create audit events. Context While audit logging may seem like a very simple thing to add to an ap
A simple auditor of SQL databases.
DBAuditor SQL数据库审计系统,目前支持SQL注入攻击审计 环境配置 sudo apt install golang 运行方式 将待审计语句填入test.txt中,然后运行主程序: 直接运行: go run main.go 编译运行: go build main.go ./main 主要目
A Go module that checks a domain's email information
mail-checker This checks a domain's email information, if it has DMARC, SPF Record, and or a Mail Server Bitcoin donations are welcome: 1J2aMYUnkPXkzE
A web based technical SEO audit tool.
SEOnaut This repository contains the code for SEOnaut, a web based technical SEO audit tool. A hosted version of SEOnaut is available at seonaut.org.
Qfy - Self-hosted implementation of Synthetics - Monitoring checks to validate your service availability
qfy Self-hosted implementation of Synthetics - Monitoring checks to validate you
nostdglobals is a simple Go linter that checks for usages of global variables defined in the go standard library
nostdglobals is a simple Go linter that checks for usages of global variables defined in the go standard library
Audit your egress connections and finally populate this OUTPUT chain !
egress-auditor Audit your egress connections and finally populate this OUTPUT chain ! Summary egress-auditor will monitor new outbound connections and
Cross check makes health checks on PostgreSQL and MySQL database servers
Cross Check Cross check makes health checks on PostgreSQL and MySQL database servers, it also performs master & slave control for clusters in H/A Acti
A serverless bot which periodically checks configured BigQuery capacity commitments, reservations and assignments against actual slot consumption of running jobs and reports findings to Slack/Google Chat.
Solution Guide This solution implements a ChatOps-like approach to monitoring slot utilization of Google Cloud BigQuery reservations. As an alternativ
Controller-check - Run checks against K8s controllers to verify if they meets certain conventions
controller-check Run checks against K8s controllers to verify if they meets cert
BRUS - Parses your web server (e.g. nginx) log files and checks with GreyNoise how much noise your website is exposed to.
BRUS bbbbbb rrrrrr u u sssss b b r r u u s bbbbbb rrrrrr u u sssss b b r r u u s bbbbbb r r
Go library providing simple and secure password management
Passhash passhash addresses the dismal state of password management in Go by offering easy-to-use APIs to manage credentials (e.g. password hashes) No
HCio is a straightforward way to ping Healthchecks.io checks directly from a Go application
HCio HCio is a straightforward way to ping Healthchecks.io checks directly from a Go application. Getting Started Create a simple Check: check := hcio
fuzzer for a single http parameter which checks if the response does/does not contain a certain given string
single http parameter fuzzer DISCLAIMER: ONLY USE THIS PROGRAM ON TARGETS YOU HAVE PERMISSION TO FUZZ! Initially used as a "poor man's" http fuzzer fo
Go Client Library for G Suite Email Audit API
go-google-email-audit-api Go Client Library for Google Email Audit API go get -u github.com/ngs/go-google-email-audit-api/emailaudit Email Monitor API
Checks sneaker availability, currently Asos/JD/Nike + Air Force 1 '07 44 only
airforce Setup Requires a .env file with Twilio credentials and phone numbers. SID=AC0ae6d46612d3a0c3d49977485652f665 TOKEN=7ff8d07a7d0fc9e6432a14ad84
Bodyclose: a static analysis tool which checks whether res.Body is correctly closed
bodyclose bodyclose is a static analysis tool which checks whether res.Body is correctly closed. Install You can get bodyclose by go get command. $ go
Gitscanner is used to perform a variety of security checks against Git repositories and is expandable. Feel free to add your own checks.
Git Repository security checker This is a fast Go implementation to check Git repositories (local or remote) for some common security issues. It relie
Simple Golang HTTPS/TLS Examples
Generate private key (.key) # Key considerations for algorithm "RSA" ≥ 2048-bit openssl genrsa -out server.key 2048 # Key considerations for algorith
An ATNA (Audit Trail and Node Authentication) Cloud Backup Utility
ATNA Vault ATNA Vault allows you to maintain a secure long-term archive for all your IHE audit messages. IHE vendors who can provide "filter forward"
Program that checks if the switch OLED is available on Nintendo using ChromeDP.
Nintendo Switch OLED stock checker Program that checks if the switch OLED is available on Nintendo using ChromeDP. It will check the pages for the Add
Frontend to display data from huskyCI analyses
How does it work? The main goal of this project is to provide a front-end for every huskyCI user to check the stats of the analyses done. If you don't
GitHub Action: Compose multiple (conditional) checks into a single check based on file paths in a pull request
GitHub Action: Composite Example Usage --- name: All Checks on: pull_request: branches: - main jobs: meta: runs-on: - ubuntu-20.
A scanner for running security-related configuration checks such as CIS benchmarks
Localtoast Localtoast is a scanner for running security-related configuration checks such as CIS benchmarks in an easily configurable manner. The scan
A very simple HTTP reverse proxy that checks that requests contain a valid secret as a bearer token
bearproxy -- Authorization enforcing HTTP reverse proxy Bearproxy is a very simple HTTP reverse proxy that checks that requests contain a valid secret
Go linter that checks types that are json encoded - reports unsupported types and unnecessary error checks
Checks types passed to the json encoding functions. Reports unsupported types and reports occations, where the check for the returned error can be omited.
GoLang script that checks for password leaks by sending email address to the BreachDirectory API
GoLang script that checks for password leaks by sending email address to the BreachDirectory API
Go linter which checks for dangerous unicode character sequences
bidichk - checks for dangerous unicode character sequences bidichk finds dangerous unicode character sequences in Go source files. Considered dangerou
checkip is a CLI tool and library that checks an IP address using various public services.
checkip is a CLI tool and library that checks an IP address using various public services.
mesh-kridik is an open-source security scanner that performs various security checks on a Kubernetes cluster with istio service mesh and is leveraged by OPA (Open Policy Agent) to enforce security rules.
mesh-kridik Enhance your Kubernetes service mesh security !! mesh-kridik is an open-source security scanner that performs various security checks on a
Asynchronously control the different roles available in the kubernetes cluster
RBAC audit Introduction This tool allows you to asynchronously control the different roles available in the kubernetes cluster. These audits are enter
Package truthy provides truthy condition testing with Go generics
Package truthy provides truthy condition testing with Go generics
Package truthy provides truthy condition testing with Go generics
Truthy Truthy is a package which uses generics (Go 1.18+) to create useful boolean tests and helper functions. Examples // truthy.Value returns the tr
Open Source runtime scanner for OpenShift cluster and perform security audit checks based on CIS RedHat OpenShift Benchmark specification
OpenShift-Ordeal Scan your Openshift cluster !! OpenShift-Ordeal is an open source audit scanner who perform audit check on OpenShift Cluster and outp
go-ima is a tool that checks if a file has been tampered with. It is useful in ensuring integrity in CI systems
go-ima Tool that checks the ima-log to see if a file has been tampered with. How to use Set the IMA policy to tcb by configuring GRUB GRUB_CMDLINE_LIN
CircleHash is a family of fast hashes that pass SMHasher, are faster than XXH64, SipHash, etc. and are easy to audit
CircleHash CircleHash is a family of non-cryptographic hash functions that pass every test in SMHasher (both rurban/smhasher and demerphq/smhasher). T
The Golang linter that checks that there is no simultaneous return of `nil` error and an invalid value.
nilnil Checks that there is no simultaneous return of nil error and an invalid value. Installation & usage $ go install github.com/Antonboom/nilnil@la
Query git repositories with SQL. Generate reports, perform status checks, analyze codebases. 🔍 📊
askgit is a command-line tool for running SQL queries on git repositories. It's meant for ad-hoc querying of git repositories on disk through a common interface (SQL), as an alternative to patching together various shell commands.
kubeaudit helps you audit your Kubernetes clusters against common security controls
kubeaudit helps you audit your Kubernetes clusters against common security controls
Open Source runtime scanner for Linux containers (LXD), It performs security audit checks based on CIS Linux containers Benchmark specification
lxd-probe Scan your Linux container runtime !! Lxd-Probe is an open source audit scanner who perform audit check on a linux container manager and outp
Cloud governance reports from native services in a clear and readable digest
cloudig, or Cloudigest, is a simple CLI tool for creating reports from various cloud sources with user-provided comments. It is written in Go and curr
sleuth checks that you declared a slice with length and you are trying append to the slice.
sleuth sleuth detects when an append is used on a slice with an initial size. Instruction go install github.com/sivchari/sleuth/cmd/sleuth Usage packa
A simple go program which checks if your websites are running and runs forever (stop it with ctrl+c). It takes two optional arguments, comma separated string with urls and an interval.
uptime A simple go program which checks if your websites are running and runs forever (stop it with ctrl+c). It takes two optional arguments: -interva
Generate K8s RBAC policies based on e2e test runs
rbac-audit Have you ever wondered whether your controller actually needs all the permissions it has granted to it? Wonder no more! This repo contains
Fast division, modulus and divisibility checks in Go for divisors known only at runtime.
fastdiv Fast division, modulus and divisibility checks for divisors known only at runtime via the method of: "Faster Remainder by Direct Computation:
Prevent Kubernetes misconfigurations from ever making it (again 😤) to production! The CLI integration provides policy enforcement solution to run automatic checks for rule violations. Docs: https://hub.datree.io
What is Datree? Datree helps to prevent Kubernetes misconfigurations from ever making it to production. The CLI integration can be used locally or in
Architecture checks for Go projects
Arch-Go Architecture checks for Go projects Supported rules Dependencies Checks Supports defining import rules Allowed dependencies Not allowed depend
The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testing. The tool is intended to speed up the process of Cloud review in case the security researcher compromised AWS Account Credentials.
AWS Service Enumeration Disclaimer The tool is in beta stage (testing in progress), no destructive API Calls used ( read only actions ). I hope, there
Certificate authority and access plane for SSH, Kubernetes, web applications, and databases
Teleport is an identity-aware, multi-protocol access proxy which understands SSH, HTTPS, Kubernetes API, MySQL and PostgreSQL wire protocols.
This is a style verifier intended to be used with the Gerrit checks plugin.
GERRITFMT This is a style verifier intended to be used with the Gerrit checks plugin. HOW TO USE Install formatters: go install github.com/bazelbuild/
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Vuls: VULnerability Scanner Vulnerability scanner for Linux/FreeBSD, agent-less, written in Go. We have a slack team. Join slack team Twitter: @vuls_e
Checks if there are any updates for imports in your module.
Go Up goup checks if there are any updates for imports in your module. It parses go.mod files to get dependencies with their version, uses go-git to r
Idiomatic nmap library for go developers
nmap This library aims at providing idiomatic nmap bindings for go developers, in order to make it easier to write security audit tools using golang.
Query git repositories with SQL. Generate reports, perform status checks, analyze codebases. 🔍 📊
askgit askgit is a command-line tool for running SQL queries on git repositories. It's meant for ad-hoc querying of git repositories on disk through a
Validation of best practices in your Kubernetes clusters
Best Practices for Kubernetes Workload Configuration Fairwinds' Polaris keeps your clusters sailing smoothly. It runs a variety of checks to ensure th
bodyclose is a static analysis tool which checks whether res.Body is correctly closed.
bodyclose is a static analysis tool which checks whether res.Body is correctly closed. Install You can get bodyclose by go get command. $ go
Distributed, lock-free, self-hosted health checks and status pages
Checkup is distributed, lock-free, self-hosted health checks and status pages, written in Go. It features an elegant, minimalistic CLI and an idiomati
🐳 A most popular sql audit platform for mysql
🐳 A most popular sql audit platform for mysql
Periodically collect data about my Twitter account and check in to github to preserve an audit trail.
Twitter audit trail backup This repository backs up my follower list, following list, blocked accounts list and muted accounts list periodically using
The most opinionated Go source code linter for code audit.
go-critic Highly extensible Go source code linter providing checks currently missing from other linters. There is never too much static code analysis.
errcheck checks that you checked errors.
errcheck errcheck is a program for checking for unchecked errors in go programs. Install go get -u github.com/kisielk/errcheck errcheck requires Go 1
apicompat checks recent changes to a Go project for backwards incompatible changes
Introduction apicompat is a tool to check for the introduction of backwards incompatible changes. apicompat: Guarantees that all consumers of a librar
A library built to provide support for defining service health for golang services. It allows you to register async health checks for your dependencies and the service itself, provides a health endpoint that exposes their status, and health metrics.
go-sundheit A library built to provide support for defining service health for golang services. It allows you to register async health checks for your
Library for enabling asynchronous health checks in your service
go-health A library that enables async dependency health checking for services running on an orchestrated container platform such as kubernetes or mes