369 Resources
Golang dependency-security Libraries
PHP security vulnerabilities checker
Local PHP Security Checker The Local PHP Security Checker is a command line tool that checks if your PHP application depends on PHP packages with know
A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting Family project Table of Contents Weapons Contribute Thanks to con
Wprecon, is a vulnerability recognition tool in CMS Wordpress, 100% developed in Go.
WPrecon (Wordpress Recon) Hello! Welcome. Wprecon (Wordpress Recon), is a vulnerability recognition tool in CMS Wordpress, 100% developed in Go. Featu
ssdt - Survey security.txt files
ssdt - Survey security.txt files A program to quickly survey security.txt files found on the Alexa Top 1 Million websites. The program takes about 15
sigurls is a reconnaissance tool, it fetches URLs from AlienVault's OTX, Common Crawl, URLScan, Github and the Wayback Machine.
sigurls is a reconnaissance tool, it fetches URLs from AlienVault's OTX, Common Crawl, URLScan, Github and the Wayback Machine. DiSCLAIMER: fe
Podman based development-only dependency manager for Linux.
Tent is a CLI tool for running development dependencies such as MySQL, Mongo, ElasticSearch etc inside pre-configured containers using simple one
kubequery is a Osquery extension that provides SQL based analytics for Kubernetes clusters
kubequery powered by Osquery kubequery is a Osquery extension that provides SQL based analytics for Kubernetes clusters kubequery will be packaged as
sigurlx a web application attack surface mapping tool.
sigurlx a web application attack surface mapping tool, it does ...:
MemBi is all the members of bugbounty and infosec project.
Member of Bugbounty and Infosec 🤔 What is MemBi? MemBi is all the members of bugbounty and infosec project. If you don't know who to follow, see! 🌏
cloudquery powered by Osquery
cloudquery powered by Osquery cloudquery is Osquery extension to fetch cloud telemetry from AWS, GCP, and Azure. It is extensible so that one can add
A client software for acme-dns with emphasis on usability and guidance through setup and additional security safeguard mechanisms
acme-dns-client A client software for acme-dns with emphasis on usability and guidance through setup and additional security safeguard mechanisms. It
Terraform provider for Policy Sentry (IAM least privilege generator and auditor)
terraform-provider-policyguru This is the Terraform Provider for Policy Sentry - the IAM Least Privilege Policy Generator. We have Policy Sentry hoste
Kubernetes Operator for a Cloud-Native OpenVPN Deployment.
Meerkat is a Kubernetes Operator that facilitates the deployment of OpenVPN in a Kubernetes cluster. By leveraging Hashicorp Vault, Meerkat securely manages the underlying PKI.
Create strong passwords using words that are easy for you to remember
Grasp Create strong passwords using words that are easy for you to remember A way to circumvent password complexity rules and restrictions while only
set of web security test cases and a toolkit to construct new ones
Webseclab Webseclab contains a sample set of web security test cases and a toolkit to construct new ones. It can be used for testing security scanners
Let's Encrypt client and ACME library written in Go
Let's Encrypt client and ACME library written in Go. Features ACME v2 RFC 8555 Register with CA Obtain certificates, both from scratch or with an exis
Gryffin is a large scale web security scanning platform.
Gryffin (beta) Gryffin is a large scale web security scanning platform. It is not yet another scanner. It was written to solve two specific problems w
DockerSlim (docker-slim): Don't change anything in your Docker container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)
Minify and Secure Docker containers (free and open source!) Don't change anything in your Docker container image and minify it by up to 30x making it
DNS over HTTPS [mirror]
dnss dnss is a daemon for using DNS over HTTPS. It can act as a proxy, receiving DNS requests and resolving them using DNS-over-HTTPs (DoH). This can
Go Version Manager
gvm By Josh Bussdieker (jbuss, jaja, jbussdieker) while working at Moovweb Currently lovingly maintained by Benjamin Knigge Pull requests and other an
DepCharge is a tool designed to help orchestrate the execution of commands across many directories at once.
DepCharge DepCharge is a tool that helps orchestrate the execution of commands across the many dependencies and directories in larger projects. It als
depth is tool to retrieve and visualize Go source code dependency trees.
depth is tool to retrieve and visualize Go source code dependency trees. Install Download the appropriate binary for your platform from the Rele
Clean architecture validator for go, like a The Dependency Rule and interaction between packages in your Go projects.
Clean Architecture checker for Golang go-cleanarch was created to keep Clean Architecture rules, like a The Dependency Rule and interaction between mo
Go package for UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security Services.
uuid The uuid package generates and inspects UUIDs based on RFC 4122 and DCE 1.1: Authentication and Security Services. This package is based on the g
bluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS
bluemonday bluemonday is a HTML sanitizer implemented in Go. It is fast and highly configurable. bluemonday takes untrusted user generated content as
Fast, multi-platform web server with automatic HTTPS
a project Every site on HTTPS Caddy is an extensible server platform that uses TLS by default. Releases · Documentation · Get Help Menu Features Insta
Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.
Themis provides strong, usable cryptography for busy people General purpose cryptographic library for storage and messaging for iOS (Swift, Obj-C), An
HTTP middleware for Go that facilitates some quick security wins.
Secure Secure is an HTTP middleware for Go that facilitates some quick security wins. It's a standard net/http Handler, and can be used with many fram
Pure Go implementation of the NaCL set of API's
go-nacl This is a pure Go implementation of the API's available in NaCL: https://nacl.cr.yp.to. Compared with the implementation in golang.org/x/crypt
Secure software enclave for storage of sensitive information in memory.
MemGuard Software enclave for storage of sensitive information in memory. This package attempts to reduce the likelihood of sensitive data being expos
Let's Encrypt client and ACME library written in Go
Let's Encrypt client and ACME library written in Go. Features ACME v2 RFC 8555 Register with CA Obtain certificates, both from scratch or with an exis
A probably paranoid Golang utility library for securely hashing and encrypting passwords based on the Dropbox method. This implementation uses Blake2b, Scrypt and XSalsa20-Poly1305 (via NaCl SecretBox) to create secure password hashes that are also encrypted using a master passphrase.
goSecretBoxPassword This is a Golang library for securing passwords it is based on the Dropbox method for password storage. The both passphrases are f
goArgonPass is a Argon2 Password utility package for Go using the crypto library package Argon2 designed to be compatible with Passlib for Python and Argon2 PHP. Argon2 was the winner of the most recent Password Hashing Competition. This is designed for use anywhere password hashing and verification might be needed and is intended to replace implementations using bcrypt or Scrypt.
goArgonPass Travis: Drone: All hashing and crypto is done by Go library packages. This is only a utility package to make the process described easier.
Validate the Strength of a Password in Go
go-password-validator Simple password validator using raw entropy values. Hit the project with a star if you find it useful ⭐ Supported by Qvault This
Password generator written in Go
go-generate-password Password generator written in Go. Use as a library or as a CLI. Usage CLI go-generate-password can be used on the cli, just insta
Cameradar hacks its way into RTSP videosurveillance cameras
Cameradar An RTSP stream access tool that comes with its library Cameradar allows you to Detect open RTSP hosts on any accessible target host Detect w
Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.
Database protection suite with field level encryption and intrusion detection. | Acra Engineering Examples | Documentation | Installation | Examples a
Barebones dependency manager for Go.
Johnny Deps Johnny Deps is a small tool from VividCortex that provides minimalistic dependency versioning for Go repositories using Git. Its primary p
Barebones dependency manager for Go.
Go Package Manager Go Package Manager (or gpm, for short) is a tool that helps achieve reproducible builds for Go applications by specifying the revis
Moved to https://gitea.com/lunny/gop
GOP 简体中文 GOP is a project manangement tool for building your golang applications out of global GOPATH. In fact gop will keep both global GOPATH and ev
A simple dependency manager for Go (golang), inspired by Bundler.
Goop A dependency manager for Go (golang), inspired by Bundler. It is different from other dependency managers in that it does not force you to mess w
dependency tool for go
Godep - Archived Please use dep or another tool instead. The rest of this readme is preserved for those that may still need its contents. godep helps
Go dependency management tool experiment (deprecated)
Dep dep is a dependency management tool for Go. It requires Go 1.9 or newer to compile. NOTE: Dep was an official experiment to implement a package ma
Minimalistic, pluggable Golang evloop/timer handler with dependency-injection
Anagent Minimalistic, pluggable Golang evloop/timer handler with dependency-injection - based on codegangsta/inject - go-macaron/inject and chuckpresl
Strict Runtime Dependency Injection for Golang
wire Wire is runtime depedency injection/wiring for golang. It's designed to be strict to avoid your go application running without proper dependency
Dependency Injection and Inversion of Control package
Linker Linker is Dependency Injection and Inversion of Control package. It supports the following features: Components registry Automatic dependency i
Simple and yet powerful Dependency Injection for Go
goioc/di: Dependency Injection Why DI in Go? Why IoC at all? I've been using Dependency Injection in Java for nearly 10 years via Spring Framework. I'
Simple Dependency Injection Container
🪣 gocontainer gocontainer - Dependency Injection Container 📖 ABOUT Contributors: Rafał Lorenz Want to contribute ? Feel free to send pull requests!
A dependency injection based application framework for Go.
🦄 Fx An application framework for Go that: Makes dependency injection easy. Eliminates the need for global state and func init(). Installation We rec
Go Dependency Injection Framework
Dingo Dependency injection for go Hello Dingo Dingo works very very similiar to Guice Basically one binds implementations/factories to interfaces, whi
A reflection based dependency injection toolkit for Go.
⚒️ dig A reflection based dependency injection toolkit for Go. Good for: Powering an application framework, e.g. Fx. Resolving the object graph during
🛠 A full-featured dependency injection container for go programming language.
DI Dependency injection for Go programming language. Tutorial | Examples | Advanced features Dependency injection is one form of the broader technique
A lightweight yet powerful IoC container for Go projects
Container A lightweight yet powerful IoC container for Go projects. It provides a simple, fluent and easy-to-use interface to make dependency injectio
An additive dependency injection container for Golang.
Alice Alice is an additive dependency injection container for Golang. Philosophy Design philosophy behind Alice: The application components should not
A powerful zero-dependency json logger.
ZKits Logger Library About This package is a library of ZKits project. This is a zero-dependency standard JSON log library that supports structured JS
hiboot is a high performance web and cli application framework with dependency injection support
Hiboot - web/cli application framework About Hiboot is a cloud native web and cli application framework written in Go. Hiboot is not trying to reinven
A different approach to Go web frameworks
Note: gongular recently updated, and if you are looking for the previous version it is tagged as v.1.0 gongular is an HTTP Server Framework for develo
Simple, zero-dependency scheduling library for Go
go-quartz Simple, zero-dependency scheduling library for Go. About Inspired by the Quartz Java scheduler. Library building blocks Job interface. Any t
CSRF protection middleware for Go.
nosurf nosurf is an HTTP package for Go that helps you prevent Cross-Site Request Forgery attacks. It acts like a middleware and therefore is compatib
gorilla/csrf provides Cross Site Request Forgery (CSRF) prevention middleware for Go web applications & services 🔒
gorilla/csrf gorilla/csrf is a HTTP middleware library that provides cross-site request forgery (CSRF) protection. It includes: The csrf.Protect middl
A Go dependency graph visualization tool
godepgraph godepgraph is a program for generating a dependency graph of Go packages. Install go get github.com/kisielk/godepgraph Use For basic usage
Secure storage for personal records built to comply with GDPR
Databunker Databunker is a Personally Identifiable Information (PII) Data Storage Service built to Comply with GDPR and CCPA Privacy Requirements. Pro
Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.
Themis provides strong, usable cryptography for busy people General purpose cryptographic library for storage and messaging for iOS (Swift, Obj-C), An
Dependency-free replacement for GNU parallel, perfect fit for usage in an initramfs.
coshell v0.2.5 A no-frills dependency-free replacement for GNU parallel, perfect for initramfs usage. Licensed under GNU/GPL v2. How it works An sh -c
Simple, useful and opinionated config loader.
aconfig Simple, useful and opinionated config loader. Rationale There are many solutions regarding configuration loading in Go. I was looking for a si
A Simple and Clear CLI library. Dependency free.
A Simple and Clear CLI library. Dependency free. Features Nested Subcommands Uses the standard library flag package Auto-generated help Custom banners
Go Version Manager
gvm By Josh Bussdieker (jbuss, jaja, jbussdieker) while working at Moovweb Currently lovingly maintained by Benjamin Knigge Pull requests and other an
Platform-Agnostic Security Tokens implementation in GO (Golang)
Golang implementation of PASETO: Platform-Agnostic Security Tokens This is a 100% compatible pure Go (Golang) implementation of PASETO tokens. PASETO
Safe, simple and fast JSON Web Tokens for Go
jwt JSON Web Token for Go RFC 7519, also see jwt.io for more. The latest version is v3. Rationale There are many JWT libraries, but many of them are h