484 Resources
Golang aws-security Libraries
CLI client (and Golang module) for deps.dev API. Free access to dependencies, licenses, advisories, and other critical health and security signals for open source package versions.
depsdev CLI client (and Golang module) for deps.dev API. Free access to dependencies, licenses, advisories, and other critical health and security sig
AI-Powered Code Reviews for Best Practices & Security Issues Across Languages
AI-CodeWise 🦉 AI-Powered Code Reviews for Best Practices & Security Issues Across Languages AI-CodeWise GitHub Action: Your AI-powered Code Reviewer!
A Flask-based HTTP(S) command and control (C2) framework with a web frontend. Malleable agents written in Go and scripts written in bash.
▄▄▄▄ ██▓ █████▒██▀███ ▒█████ ██████ ▄▄▄█████▓ ▓█████▄ ▓██▒▓██ ▒▓██ ▒ ██▒▒██▒ ██▒▒██ ▒ ▓ ██▒ ▓▒ ▒██▒ ▄██▒██▒▒████ ░▓██ ░▄█ ▒▒██░ ██▒░
The Cloud Aviator: TUI client for cloud services (AWS, Vultr, Heroku, Render.com, ...)
=== T H E C L O U D A V I A T O R === ⠀⠀⠀⠀⠀⠀⠀⠀⢶⣦⣄⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀ ⠀⠀⠀⠀⠀⠀⠀⠀⠀⠙⢿⣷⣦⡀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀⠀
Zinc Search engine. A lightweight alternative to elasticsearch that requires minimal resources, written in Go.
Zinc Search Engine Zinc is a search engine that does full text indexing. It is a lightweight alternative to Elasticsearch and runs using a fraction of
Substation is a cloud native toolkit for building modular ingest, transform, and load (ITL) data pipelines
Substation Substation is a cloud native data pipeline toolkit. What is Substation? Substation is a modular ingest, transform, load (ITL) application f
Gopherscript is a secure and minimal scripting language written in Go.
Gopherscript Gopherscript is a secure scripting/configuration language written in Go. It features a fined-grain permission system and enforces a stron
A collection of cloud security icons :cloud::lock:
Cloud Security Icons These icons are published under the extremely permissive Creative Commons Zero v1.0 Universal license. Downloads We provide all i
A CLI tool that can be used to disrupt wireless connectivity in your area by jamming all the wireless devices connected to multiple access points.
sig-716i A CLI tool written in Go that can be used to disrupt wireless connectivity in the area accessible to your wireless interface. This tool scans
A Terraform module to manage cluster authentication (aws-auth) for an Elastic Kubernetes (EKS) cluster on AWS.
Archive Notice The terraform-aws-modules/eks/aws v.18.20.0 release has brought back support aws-auth configmap! For this reason, I highly encourage us
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
Open Source API Firewall API Firewall is a high-performance proxy with API request and response validation based on OpenAPI/Swagger schema. It is desi
“Dear Port80” is a zero-config TCP proxy server that hides SSH connection behind a HTTP server!
Dear Port80 About The Project: “Dear Port80” is a zero-config TCP proxy server that hides SSH connection behind a HTTP server! +---------------------
Breaking Cloud Native Web APIs in their natural habitat.
cnfuzz - Cloud Native Web API Fuzzer "Breaking Cloud Native Web APIs in their natural habitat." Fuzzing web APIs in their fully converged Cloud Native
⛓ The security layer for the KYVE protocol.
The KYVE Chain v0.2.0 The chain nodes are the backbone of KYVE. The chain layer is a completely sovereign Proof of Stake blockchain build with Cosmos
Gologin is Golang (Go) login manager working with RDBMS Databases
What is Gologin Gologin is an easy to setup professional login manager for Go web applications. It helps you protect your application resources from u
Read the text of memes, then inject that text into the image as searchable metadata.
Make Meme Text Searchable I have an extensive set of memes I've been collecting since the early days of Flickr. #icanhascheeseburger It's a pain in th
CetusGuard is a tool that allows to protect the Docker daemon socket by filtering the calls to its API endpoints.
CetusGuard CetusGuard is a tool that allows to protect the Docker daemon socket by filtering the calls to its API endpoints. Some highlights: It is wr
Golang distributed Slowloris attack 🦥
slowloris - Golang distributed Slowloris attack How it works Read the article 🦷 How to protect from it TBD Installation Run go install github.com/its
APKrash is an Android APK security analysis toolkit focused on comparing APKs to detect tampering and repackaging.
APKrash APKrash is an Android APK security analysis toolkit focused on comparing APKs to detect tampering and repackaging. Features Able to analyze pu
VaultOperator provides a CRD to interact securely and indirectly with secrets stored in Hashicorp Vault.
vault-operator The vault-operator provides several CRDs to interact securely and indirectly with secrets. Details Currently only stage 1 is implemente
Awspowertoggle - Web UI and API for quickly starting and stopping AWS environments
aws-power-toggle web UI and API for quickly starting and stopping AWS environmen
Aws-cdk-go-examples - Example projects using the AWS CDK by Golang
aws-cdk-go-examples Example projects using the AWS CDK by Golang Useful commands
Nmapservices - Most common ports with golang
Sample use package main import ( "fmt" "log" "github.com/jreisinger/nmapser
Assume-shell - A tool to create a shell with AWS environment credentials set
assume-shell This tool will request AWS credentials for a given profile/role and
👀The vaws command was created to simplify the display of AWS resources.
Vaws The vaws command was created to simplify the display of AWS resources. This repository is a Go version of the command that was created in the fol
A simple app to produce messages to sqs by using aws sdk v2 package for Golang.
go-sqs-producer A simple app to produce messages to SQS by using aws sdk v2 package for Golang in performatic meaning. How to run | go 1.17 or above i
Dev-spaces - A CLI to help creating development environments using AWS Spot Instances
This is a CLI to help creating on-demand development spaces using EC2 Spot Intances.
Convert JPEG images from S3 bucket to BMP, GIF, PNG into another bucket
aws-lambda Convert JPEG images from S3 bucket to BMP, GIF, PNG into another bucket Setup two buckets jpeg-images for source jpeg images converted-jpeg
Godbolt console wrapper for easily execute local file without any security risk and compiler.
Godbolt CLI Godbolt console wrapper for easily execute local file without any security risk and compiler. Install Compile the source code and add to y
Una prueba técnica: Servicio Golang REST API local, sobre Docker, gRPC, AWS Serverless y sobre Kubernetes en AWS EC2
Una prueba técnica: Servicio Golang REST API local, sobre Docker, gRPC, AWS Serverless y sobre Kubernetes en AWS EC2
CLi tools helping to forge HTTP smuggling attack and others
HTTPCustomHouse CLi tools helping to forge HTTP smuggling attack and others (httpcustomhouse) Analyze smuggled request without interacting with remote
GoLang - Produces a binary suitable for use in shell scripts and cron jobs for rotating IAM credentials.
AWS-Rotate-IAM-Key aws-rotate-iam-key makes it easy to rotate your IAM keys whether they be in your ~/.aws/credentials file or else where. This work i
Create an ESK cluster using CDK and Golang.
Welcome to your CDK Go project! This is a blank project for Go development with CDK. NOTICE: Go support is still in Developer Preview. This implies th
GONET-Scanner - Golang network scanner with arp discovery and own parser
GO/NET Scanner ScreenShots Install chmod +x install.sh ./install.sh [as root] U
Backend to project Dating App. Written in GO, utilising Gin. MongoDB, AWS S3 and SNS.
Dating API Backend to project Dating App. Written in GO, utilising Gin. MongoDB, AWS S3 and SNS. In order to run simply type "go run ." The API requir
step-ca is an online certificate authority for secure, automated certificate management.
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Mrrobot - A simple greetings bot for Slack that uses events api and hosted on AWS Lambda
Mr. Robot a greeter bot for your slack community build_docker
Go package providing opinionated tools and methods for working with the `aws-sdk-go/service/cloudfront` package.
go-aws-cloudfront Go package providing opinionated tools and methods for working with the aws-sdk-go/service/cloudfront package. Documentation Tools $
Aws-cognito-demo-go - Source code for AWS Cognito in Go
AWS Cognito Demo in Go Source code for YouTube series, AWS Cognito in Go - https
Program to fetch public IP ranges of AWS, Azure and Google
cloudip This program will retrieve a list of all public IP address ranges (v4 or v6) for the three major cloud vendors: Amazon AWS, Microsoft Azure an
🍷 Find exploits and vulnerabilities in the most important databases.
🍷 Dionisio Dionisio is a tool that can automate the search for exploits and vulnerabilities. Written in Go and open source, Dionisio has an advanced
Command line utility for querying AWS Athena, seeks to emulate sqlite3
athena-query Command line utility for querying AWS Athena, seeks to emulate sqlite3. It implements some similar commands (the . notation) as sqlite3.
Sbom-operator - Catalogue all images of a Kubernetes cluster to multiple targets with Syft
sbom-operator Catalogue all images of a Kubernetes cluster to multiple targets w
Hashkill - A fast hash decryptor with golang
Hashkill ♻️ Changelog v0.2 Added timing Fixed running, the program breaks if all
Stratus-red-team - Granular, Actionable Adversary Emulation for the Cloud
Stratus Red team Stratus Red Team is "Atomic Red Team™" for the cloud, allowing
Pwnkit-go - Exploit for the PwnKit vulnerability, CVE-2021-4034, written in Go
Pwnkit-go This is a working exploit for the pwnkit vulnerability, CVE-2021-4034,
A Telegram bot that feeds you every hour with the latest news about Hacking, FOSS, privacy, security, etc
HackerNews Telegram bot - Golang version A Telegram bot that serves you with personalized HackerNews articles. You can self host it and make it filter
wholeaked is a file-sharing tool that allows you to find the responsible person in case of a leakage
wholeaked is a file-sharing tool that allows you to find the responsible person in case of a leakage
Startpage - Lambda for reading rss feeds and generating a minimal start page for a static site
startpage generate a startpage of links for a static site hosted via AWS What It
Web-Security-Academy - Web Security Academy, developed in GO
Web-Security-Academy - Web Security Academy, developed in GO
Aws-console-plugin - The current HashiCorp Vault AWS Secret Engine currently supports the creation of short lived API keys using the IAM User
aws-console-plugin Background The current HashiCorp Vault AWS Secret Engine curr
Shfz - Scenario-based fuzzing test execution tool for web applications
shfz A scenario-based web application fuzzng tool that supports fuzz generation
Savoir - A tool to perform tasks during internal security assessment
Savoir Savoir is a tool to perform tasks during internal security assessment. Th
Rotate is a tool for rotating out AWS Auto-Scaling Groups within a k8s cluster
k8s-r8 rotate is a tool for rotating out AWS Auto-Scaling Groups within a k8s cluster. It was developed to make upgrading AMIs as a one command experi
List of serverless functions for AWS S3. Easy deploy with Vercel CLI
List of serverless functions for AWS S3. Easy deploy with Vercel CLI
Opinionated CLI app for AWS SSO made in Golang!
aws-sso-creds AWS SSO Creds Table of Contents About The Project Built With Instalation Static From source Usage Contributing License Contact Acknowled
Velociraptor - Endpoint visibility and collection tool.
Velociraptor - Endpoint visibility and collection tool. Velociraptor is a tool for collecting host based state information using The Velociraptor Quer
This service will help you detect any waste of resources in your AWS account
Frugal-Hero This service will help you detect any waste of resources in your AWS account. The policy is: if it is not useful, delete it! Requirements
Authentication Plugin for implementing Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0, SAML Authentication
Authentication Plugin for implementing Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0, SAML Authentication
Deploy 2 golang aws lambda functions using serverless framework.
Deploy 2 golang aws lambda functions using serverless framework.
Volana - Shell command obfuscation to avoid detection systems
volana (moon in malagasy) { Use it ; 🌚(hide from); 🌞(detected by) } Shell comm
Go utility for loading configuration parameters from AWS SSM (Parameter Store)
ssmconfig import "github.com/ianlopshire/go-ssm-config" SSMConfig is a utility for loading configuration parameters from AWS SSM (Parameter Store) dir
AWS Cloudfront Real-Time Logging Stack
aws-cf-rtl AWS Cloudfront Real-Time Logging Why? AWS Cloudfront easily stashes JSON formatted weblogs to S3 buckets (standard logging). However, proce
A terminal designed for anyone to use and designed for any platform
A terminal designed for anyone to use and designed for any platform. Which includes the basic features of any terminal and includes friendly commands to perform tools such as ping, traceroute, generate key pairs, encrypt/decrypt, router security actions, etc. All of the source code is done in Go.
Go-xrayprofile - Selective profiling of AWS Lambda functions
go-xrayprofile AWS X-Ray is handy for understanding the overall performance of y
Aws-parameter-bulk - Export AWS SSM Parameter Store values in bulk to .env files
aws-parameter-bulk Utility to read parameters from AWS Systems Manager (SSM) Par
Pulumi-awscontroltower - A Pulumi provider for AWS Control Tower
Terraform Bridge Provider Boilerplate This repository contains boilerplate code
Integrate Snyk into Harbor
Harbor Snyk Scanner Harbor Snyk Scanner is a scanner adaptor for Harbor to integrate scan results from Snyk. The project is currently work in progress
lightweight, self-service AWS IAM management
Contents Overview Architecture Prerequisites Workflow What groups exist? Who do I ask for access? What groups am I in? How do I add group members? How
Getting presigned urls for S3 with AWS SDK Go V2. Easy deploy with Velcel CLI.
S3-Presigned-Urls-Vercel-Serverless Setup yarn install && yarn setup Run(Local) yarn start You need to set environment variables with os.setenv for lo
Golang AWS SAM Lambda example
Golang AWS SAM Lambda example This example project shows how to use AWS SAM with
OpenSCA is a Software Composition Analysis (SCA) solution that supports detection of open source component dependencies and vulnerabilities.
OpenSCA-Cli 项目介绍 OpenSCA 用来扫描项目的第三方组件依赖及漏洞信息。 下载安装 从 releases 下载对应系统架构的可执行文件压缩包 或者下载源码编译(需要 go 1.11 及以上版本) git clone https://github.com/XmirrorSecurit
Example of a distributed voting app running on Kubernetes. Written in Golang with Terraform definitions to deploy to AWS EKS
Example of a distributed voting app running on Kubernetes. Written in Golang with Terraform definitions to deploy to AWS EKS
Scout is a standalone open source software solution for DIY video security.
scout Scout is a standalone open source software solution for DIY video security. https://www.jonoton-innovation.com Features No monthly fees! Easy In
Hexa is the open-source, standards-based policy orchestration software for multi-cloud and hybrid businesses.
Hexa Policy Orchestrator Hexa is the open-source, standards-based policy orchestration software for multi-cloud and hybrid businesses. The Hexa projec
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URL and Role.
Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URL and Role. URLs and Roles are managed as YAML-based
Flowdog - Framework for inspecting and editing traffic in AWS VPCs
Twitter thread flowdog This is an application/framework for inspection and manip
QR secrets is a cryptographically secure mechanism to store secret data with the highest levels of security and store it on physical paper.
QR Secrets QR secrets is a cryptographically secure mechanism to store secret data with the highest levels of security. Incorporating; AES256-GCM-HKDF
Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.
Tink A multi-language, cross-platform library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse. https:/
Streamhub: a toolkit crafted for streaming-powered applications written in Go
✉️ Streamhub Streamhub is a toolkit crafted for streaming-powered applications w
Pulumi-aws-iam - Reusable IAM modules for AWS
xyz Pulumi Component Provider (Go) This repo is a boilerplate showing how to cre
List your dependencies capabilities and monitor if updates require more capabilities.
A take on supply chain security in Go List your dependencies capabilities and monitor if dependency updates require more capabilities. The Problem Rec
Prometheus-elasticache-sd - Prometheus Service Discovery for AWS ElastiCache
Prometheus AWS ElastiCache Service Discovery ElastiCache SD allows retrieving sc
Create AWS Auto Scaling groups from running instances or AMIs automatically.
AWS Auto Scaling Groups Builder AWS Auto Scaling group is a great way of managing Amazon EC2 instances. AWS Auto Scaling group watches the correspondi
Passive DNS Capture/Monitoring Framework
Table of Contents DNS Monster Main features Installation Linux Container Build Manually Build Statically Windows FreeBSD and MacOS Architecture AIO In
Welcome to the AWS Code Examples Repository.
Welcome to the AWS Code Examples Repository. This repo contains code examples used in the AWS documentation, AWS SDK Developer Guides, and more. For more information, see the Readme.rst file below.
Ipv6-ghost-ship - Silly usage of AWS EC2 IPv6 prefixes
ipv6-ghost-ship Twitter thread 🐦 As of July 2021, AWS EC2 instances can be assi
garlicshare is an open source tool that lets you securely and anonymously share files on a hosted onion service using the Tor network.
garlicshare is an open source tool that lets you securely and anonymously share files on a hosted onion service using the Tor network.
Aws-secretsmanager-caching-extension - Cache server for AWS Secrets Manager
AWS Lambda Extension / Sidecar Container Cache Server The cache server is writte
Simple CRUD API written in Go, built using AWS SAM tool and using the AWS' infrastructure.
tutor-pet API Simple CRUD API written in Go, built using AWS SAM tool and using the AWS' infrastructure. Macro architecture: Code architecture: Pre-Re
AWS Profile Selector For Golang
AWS Profile Selector This tool works with saml2aws, it's a wrapper of saml2aws w
Goaws - AWS (SQS/SNS) Clone for Development testing
GoAws You are always welcome to tweet me or buy me a coffee Written in Go this is a clone of the AWS SQS/SNS systems. This system is designed to emula
Sparta - go microservices, powered by AWS Lambda
EOL Times have changed since I started this work. I no longer have the resources to adequately maintain this project. Additionally, there now also exi
Rump - Hot sync two Redis servers using dumps.
Hot sync two Redis databases using dumps. Why There's no easy way to sync data from an AWS ElastiCache or GCP MemoryStore Redis cluster; the standard
Go-AWS-Auth is a comprehensive, lightweight library for signing requests to Amazon Web Services.
go-aws-auth Go-AWS-Auth is a comprehensive, lightweight library for signing requests to Amazon Web Services. It's easy to use: simply build your HTTP
Aegis - Serverless Golang deploy tool and framework for AWS Lambda
Aegis Aegis Documentation Aegis is both a simple deploy tool and framework. Its primary goal is to help you write microservices in the AWS cloud quick
Cert bound sts server - Certificate Bound Tokens using Security Token Exchange Server (STS)
Certificate Bound Tokens using Security Token Exchange Server (STS) Sample demonstration of Certificate Bound Tokens acquired from a Security Token Ex
Aws asg updater - Update AMIs within AWS Auto Scaling groups automatically.
AWS Auto Scaling Groups Updater AWS Auto Scaling group is a great way of managing Amazon EC2 instances. AWS Auto Scaling group watches the correspondi
Kfchc - Kafka Connect (connectors / tasks) HealthCheck For AWS ALB and more
kfchc / Kafka Connect HealthCheck Kafka Connect (connectors / tasks) HealthCheck
`ls` but for your AWS VPC(s)
lsvpc A simple AWS VPC listing tool to provide quick introspection on the makeup of a VPC One really cool use of this tool is to run: watch -c lsvpc -