Top 10 open source security projects
\
GuideOpen source is heading for victory. Although this day may come a little later, open source will win. In the network security community, although many companies firmly grasp their own code in the form of commercial software, there are also many open-source security projects available for professional security personnel.
GitHub is the best place to search for open-source software related to security. You can use the search function on the website to find these useful tools, but there is a place for you to find the most popular security projects, that is, the GitHub display area, not many people may know about it.
The GitHub display area will display these most popular projects by category starting in 2014. In the display area, the project obtainsStar numberThis list keeps updating the most popular items. The "security" category in the presentation area contains 24 projects. Here we list the top 10 security projects on GitHub.
1. osquery-from FacebookOsquery represents the operating system as a high-performance relational database. This allows you to obtain operating system data through SQL-based queries. Osquery abstracts running processes, loaded kernel modules, opened network connections, browser plug-ins, hardware events, and file hashing into SQL data tables.
2. Metasploit Framework-from Rapid7Metasploit Framework is a tool used to develop and execute vulnerability exploitation code for remote target hosts.
3. Infer-from FacebookFacebook Infer is a static analysis tool. Use it to analyze Objective-C, Java, or C code and list potential defects. Before the code is uploaded to a mobile phone device, you can use Infer to locate the critical defects to prevent crashes or performance degradation.
4. Brakeman-from PresidentBeefBrakeman is an open-source static analysis tool that can check security vulnerabilities in Ruby on Rails Applications.
5. Radare2-from the Radare ProjectRadare is a forensics tool and a programmable command line hexadecimal editor that can open disk files. It also supports binary analysis, disassembly code, debugging programs, and remote connection to the gdb server.
6. OS X Auditor-from Jean-Philippe TeissierOS x Auditor is a free Mac OS X computer forensics tool that parses various types of files and obtains suspicious content.
7. BeEF-from BeEF ProjectBeEF is simplyBrowser exploitation frameworkBrowser Exploitation Framework. It is a vulnerability testing tool for browsers.
8. Cuckoo-from the Cuckoo Sandbox ProjectCuckoo Sandbox is an automatic dynamic malware analysis system. Simply put, you can throw any suspicious file to it. It takes only a few seconds for Cuckoo to give a general result of execution in an isolated environment.
9. Scumblr-from NetflixScumblr is a Web application that periodically performs checks and takes different measures based on the check results.
10. Moloch-from AOLMoloch is an open-source, large-scale system that captures packets, indexes, and stores data in databases. It provides a simple Web interface for you to view, retrieve, and export captured data packets. It supports APIs to directly download PCAP data and JSON-format session data. Moloch is not used to replace IDS. Instead, Moloch is used to store and index all network data in the standard PCAP format for fast access. Moloch can be deployed across systems and can handle up to 10 Gb of traffic per second.
From: https://linux.cn/article-7748-1.html
Address: http://www.linuxprobe.com/github-top10-security.html