265 Repositories
Rust security-testing Libraries
An NTP implementation in Rust, supported by Internet Security Research Group's Prossimo project.
NTPD-rs NTPD-rs is an implementation of NTP completely written in Rust, with a focus on exposing a minimal attack surface. The project is currently in
Rust libraries and tools to help with interoperability and testing of serialization formats based on Serde.
The repository zefchain/serde-reflection is based on Facebook's repository novifinancial/serde-reflection. We are now maintaining the project here and
Final Project for "Computer Networking Security": A Layer-3 VPN implementation over TLS
Final Project for "Computer Networking Security": A Layer-3 VPN implementation over TLS
The free password manager for power users
The free password manager for power users
Xiu - A simple and secure live media server in pure Rust (RTMP/HTTP-FLV/HLS/Relay).🦀
Xiu is a simple and secure live media server written by pure Rust, it now supports popular live protocols like RTMP/HLS/HTTP-FLV (and maybe other protocols in the future), you can deploy it as a stand-alone server or a cluster using the relay feature.
Cucumber testing framework for Rust. Fully native, no external test runners or dependencies.
Cucumber testing framework for Rust An implementation of the Cucumber testing framework for Rust. Fully native, no external test runners or dependenci
An easily deployable service to monitor mission-critical SPL token accounts
Vault watcher Monitoring critical spl-token accounts in real time Table of contents Introduction Usage Configuration Configuration examples Grafana In
rusty-riscy is a performance testing and system resource monitoring tool written in Rust to benchmark RISC-V processors.
rusty-riscy rusty-riscy is a performance testing and system resource monitoring tool written in Rust to benchmark RISC-V processors. Objectives To cre
security.txt for Solana Contracts
security.txt This library defines a macro, which allows developers to provide easy-to-parse information to security researchers that wish to contact t
Texting Robots: A Rust native `robots.txt` parser with thorough unit testing
Texting Robots Crate texting_robots is a library for parsing robots.txt files. A key design goal of this crate is to have a thorough test suite tested
A minimalist property-based testing library based on the arbitrary crate.
A minimalist property-based testing library based on the arbitrary crate.
Ingraind - a security monitoring agent built around RedBPF for complex containerized environments and endpoints.
ingraind is a security monitoring agent built around RedBPF for complex containerized environments and endpoints. The ingraind agent uses eBPF probes to provide safe and performant instrumentation for any Linux-based environment.
High Assurance Rust - A free book about developing secure and robust systems software.
High Assurance Rust - A free book about developing secure and robust systems software.
Chaos Cat brings destruction and suffering to your software
Chaos Cat brings destruction and suffering to your software. When Chaos Cat is loaded it will randomly make predefined syscalls fail. This tests your software for the the things you might have forgotten to check because operating systems usually Just Work™ and syscalls usually never fail.
Dangerously fast dns/network/port scanner, all-in-one
Skanuvaty Dangerously fast dns/network/port scanner, all-in-one. Start with a domain, and we'll find everything about it. Features: Finds subdomains f
Rest API to check if a password is in a data breach
easypwned (haveibeenpwned / HIBP) Rest API to check if a password is in a data breach. Works offline - everything stays on your machine! Database is i
A simple program for C program IO testing. Written in Rust
A simple program for C program IO testing. Written in Rust, using concurrency to speed up valgrind testing. Make sure to update settings at your first run of the program!
insta: a snapshot testing library for Rust
insta: a snapshot testing library for Rust Introduction Snapshots tests (also sometimes called approval tests) are tests that assert values against a
Noir Pay - Fork of the Light Protocol Program for local testing / optimisation.
Noir Pay v0 Built on Light Protocol Noir Pay will be directly built ontop of the Light Protocol SDK and provide users with a beautifully simple privat
Nextest is a next-generation test runner for Rust.
nextest Nextest is a next-generation test runner for Rust. For more, check out the website. This repository contains the source code for: cargo-nextes
hb is an endpoint focused HTTP load testing / benchmark tool.
hb hb is an endpoint focused HTTP load testing / benchmark tool. Description The goal of hb is to provide a simple, robust tool to apply load against
Verdict-as-a-Service SDKs: Analyze files for malicious content
Verdict-as-a-Service Verdict-as-a-Service (VaaS) is a service that provides a platform for scanning files for malware and other threats. It allows eas
Testing interactions with other NFT projects locally is difficult
Terra NFT Stub contract Testing interactions with other NFT projects locally is difficult. Terra NFT Stub makes things a bit easier by providing a con
Rebuilderd debian buildinfo crawler
Sponsored by: rebuilderd-debian-buildinfo-crawler This program parses the Packages.xz debian package index, attempts to discover the right buildinfo f
A series of utility macros for outputting testing results.
test-results A series of utility macros for outputting testing results. Getting Started Simply add the test-results crate to your project's Cargo.toml
xh is a friendly and fast tool for sending HTTP requests. It reimplements as much as possible of HTTPie's excellent design, with a focus on improved performance.
xh is a friendly and fast tool for sending HTTP requests. It reimplements as much as possible of HTTPie's excellent design, with a focus on improved performance
Kepler is a vulnerability database and lookup store and API currently utilising National Vulnerability Database and NPM Advisories as data sources
Kepler — Kepler is a vulnerability database and lookup store and API currently utilising National Vulnerability Database and NPM Advisories as data so
Rustcoin - A LightWeight SDK For Bitcoin, Ethernum
Rustcoin - A LightWeight SDK For Bitcoin, Ethernum
Parses COVID-19 testing data from DC government ArcGIS APIs
covid-dc Parses COVID-19 testing data from DC government ArcGIS APIs Example debug output from cargo run RapidSite { attributes: RapidSiteAttribut
A free file hosting server that focuses on speed, reliability and security.
Triox Next Generation cloud storage server that is secure, fast, and reliable. Why Triox? ☘️ Open Source - We strongly believe in collaboration and tr
LibreAuth is a collection of tools for user authentication.
LibreAuth is a collection of tools for user authentication. Features Password / passphrase authentication no character-set limitation reason
Sled - the champagne of beta embedded databases
key value buy a coffee for us to convert into databases documentation chat about databases with us sled - it's all downhill from here!!! An embedded d
Rustress - stress testing library in Rust. For fun
rustress Simple network stress testing library. To get familiar with Rust Planned features (Subject to change) Multithreaded client/server Throughput
Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.
Aya API docs | Chat | Aya-Related Projects Overview eBPF is a technology that allows running user-supplied programs inside the Linux kernel. For more
Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.
foundry Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust. Foundry consists of: Forge: Ethe
HTTPie: human-friendly CLI HTTP client for the API era
HTTPie: human-friendly CLI HTTP client for the API era HTTPie (pronounced aitch-tee-tee-pie) is a command-line HTTP client. Its goal is to make CLI in
Ultralight, security-first service mesh for Kubernetes. Main repo for Linkerd 2.x.
Linkerd 🎈 Welcome to Linkerd! 👋 Linkerd is an ultralight, security-first service mesh for Kubernetes. Linkerd adds critical security, observability,
Meta-repository for Miscreant: misuse-resistant symmetric encryption library with AES-SIV (RFC 5297) and AES-PMAC-SIV support
The best crypto you've never heard of, brought to you by Phil Rogaway A misuse resistant symmetric encryption library designed to support authenticate
Organized, flexible testing framework for Rust
Stainless Stainless is a lightweight, flexible, unopinionated testing framework. Note that stainless currently requires the nightly version of the Rus
Security advisory database for Rust crates published through crates.io
RustSec Advisory Database The RustSec Advisory Database is a repository of security advisories filed against Rust crates published via https://crates.
Testing Framework for Rust
Polish Polish is Test-Driven Development done right Getting Started Installing the Package The crates.io package is kept up-to-date with all the major
Command line interface for BDSP RNG, primarily used as a reference implementation and as a tool for testing.
BDSP RNG Reference This is a command line interface for BDSP RNG, primarily used as a reference implementation and as a tool for testing. Building Bui
Firecracker takes your HTTP logs and uses them to map your API flows and to detect anomalies in them.
Who is BLST and what do we do? BLST (Business Logic Security Testing) is a startup company that's developing an automatic penetration tester, replacin
Struct mocking library for Rust
faux A library to create mocks out of structs. faux allows you to mock the methods of structs for testing without complicating or polluting your cod
Rust testing library
K9 - Rust Testing Library Snapshot testing + better assertions Available test macros snapshot assert_equal assert_greater_than assert_greater_than_or_
Fixture-based test framework for Rust
Fixture-based test framework for Rust Introduction rstest uses procedural macros to help you on writing fixtures and table-based tests. To use it, add
Audit Cargo.lock files for dependencies with security vulnerabilities
RustSec Crates 🦀 🛡️ 📦 The RustSec Advisory Database is a repository of security advisories filed against Rust crates published via crates.io. The a
Applied offensive security with the Rust programming language
Black Hat Rust Applied offensive security with the Rust programming language Buy the book now! While the Rust Book does an excellent job teaching What
Minimal and persistent key-value store designed with security in mind
microkv Minimal and persistent key-value store designed with security in mind. Introduction microkv is a persistent key-value store implemented in Rus
Bindings to the macOS Security.framework
macOS/iOS Security framework for Rust Documentation Bindings to the Apple's Security.framework. Allows use of TLS and Keychain from Rust. License Lice
A Rust implementation of the Message Layer Security group messaging protocol
Molasses An extremely early implementation of the Message Layer Security group messaging protocol. This repo is based on draft 4 of the MLS protocol s
Small container runtime for threat detection
confine Containers, but for dynamic malware analysis confine is a container runtime for dynamically analyzing suspicious executables. Given a sample s
Breaking your Rust code for fun and profit
Breaking your Rust code for fun & profit this is an architecture-preview, not all components are there This is a mutation testing framework for Rust c
Hypothesis-like property testing for Rust
Proptest Introduction Proptest is a property testing framework (i.e., the QuickCheck family) inspired by the Hypothesis framework for Python. It allow
Automated property based testing for Rust (with shrinking).
quickcheck QuickCheck is a way to do property based testing using randomly generated input. This crate comes with the ability to randomly generate and
☢ Guerrilla (or Monkey) Patching in Rust for (unsafe) fun and profit.
Guerrilla Guerrilla (or Monkey) Patching in Rust for (unsafe) fun and profit. Provides aribtrary monkey patching in Rust. Please do not use this crate
The Swiss Army Knife for Binary (In)security
binsec Swiss Army Knife for Binary (In)security binsec is a minimal static analysis utility for detecting security capabilities in ELF/PE/Mach-O execu
Custom memory allocator that helps discover reads from uninitialized memory
libdiffuzz: security-oriented alternative to Memory Sanitizer This is a drop-in replacement for OS memory allocator that can be used to detect uses of
Modular, structure-aware, and feedback-driven fuzzing engine for Rust functions
Fuzzcheck Fuzzcheck is a modular, structure-aware, and feedback-driven fuzzing engine for Rust functions. Given a function test: (T) - bool, you can
A utility like pkg-audit for Arch Linux. Based on Arch Security Team data.
arch-audit pkg-audit-like utility for Arch Linux. Based on data from security.archlinux.org collected by the awesome Arch Security Team. Installation
A cryptographically verifiable code review system for the cargo (Rust) package manager.
image credit cargo-crev A cryptographically verifiable code review system for the cargo (Rust) package manager. Introduction Crev is a language and ec
Find the ideal fuzz targets in a Rust codebase
Siderophile Siderophile finds the "most unsafe" functions in your Rust codebase, so you can fuzz them or refactor them out entirely. It checks the cal
Independent verification of binary packages - reproducible builds
rebuilderd(1) Independent verification system of binary packages. Accessing a rebuilderd instance in your browser Scripting access to a rebuilderd ins
OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards.
OpenSK This repository contains a Rust implementation of a FIDO2 authenticator. We developed OpenSK as a Tock OS application. We intend to bring a ful
An implementation of webauthn components for Rustlang servers
Webauthn-rs Webauthn is a modern approach to hardware based authentication, consisting of a user with an authenticator device, a browser or client tha
A paseto implementation in rust.
Paseto Rust Paseto is everything you love about JOSE (JWT, JWE, JWS) without any of the many design deficits that plague the JOSE standards. This is d
Use explicit container types with Scrypto! Leverage the Rust compiler's type checking to increase security and productivity when developing Radix blueprints.
Scrypto Static Types Use explicit container types with Scrypto! Leverage the Rust compiler's type checking to increase security and productivity when
suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.
suidsnoop Log suid binaries and enforce per-uid suid policy. suidsnoop is a tool for logging whenever a suid binary is executed on your system and opt
This is a tiny (but delightful!) utility library for exhaustive testing.
Exhaustigen This is a tiny (but delightful!) utility library for exhaustive testing. It is based (directly) on the idea and code in the following blog
Example of structuring a proc macro crate for testability
testing-proc-macros Example of structuring a proc macro crate for testability. See accompanying blog post for details. License Licensed under either o
Decode, explore, and sign JWTs
JWT Explorer A utility for inspecting, modifying, and attacking JWTs. Supports Windows and Linux and probably also works on macOS but this has not bee
An uploader honeypot designed to look like poor website security.
HoneyUp An uploader honeypot designed to look like poor website security. Requirements Linux server NGiNX Rust toolchain (build only) Installation Bui
Audit Cargo.lock files for dependencies with security vulnerabilities
RustSec Crates 🦀 🛡️ 📦 The RustSec Advisory Database is a repository of security advisories filed against Rust crates published via crates.io. The a
End-to-end encryption and mutual authentication for distributed applications.
✨ Hands-on Introduction: Build end-to-end encrypted, mutually-authenticated, secure messaging in Rust ✨ Rust and Elixir libraries for end-to-end encry
(Ab)using technology for fun & profit.
(Ab)using technology for fun & profit. Code accompanying my blog
🔥 Unit testing framework for Subgraph development on The Graph protocol. ⚙️
👋 Welcome to Matchstick - a unit testing framework for The Graph protocol. Try out your mapping logic in a sandboxed environment and ensure your hand
Code for comparing CDN speeds!
How to run speed test. the image to use The image you should probably use is: cf_219kb.png cf_219kb.png is an image that won't be compressed by Jetpac
Suite for automatically testing algorithm questions from the Polish Algorithm Olympiad.
oisuite Your number #1 tool to managing your algo questions! This software only works on UNIX-based operating systems (macOS, Linux, BSD, etc.) Projec
Mobile safari / webview remote debugging and e2e testing libraries
Canter (WIP) (WIP) Mobile safari / webview remote debugging and e2e testing libraries. Developed for safari/webview e2e testing on iPhone. Works only
Snapshot testing for a herd of CLI tests
trycmd Snapshot testing for a herd of CLI tests trycmd aims to simplify the process for running a large collection of end-to-end CLI test cases, takin
assay - A super powered testing macro for Rust
assay - A super powered testing macro for Rust as·say /ˈaˌsā,aˈsā/ noun - the testing of a metal or ore to determine its ingredients and quality. Rust
A library for comparing data structures in Rust, oriented toward testing
The comparable crate defines the trait [Comparable], along with a derive macro for auto-generating instances of this trait for most data types. Primar
Drill is an HTTP load testing application written in Rust inspired by Ansible syntax
Drill is an HTTP load testing application written in Rust inspired by Ansible syntax
Lightweight slowloris (HTTP DoS) implementation in Rust.
slowlorust Lightweight slowloris (HTTP DoS) implementation in Rust. Slowloris is a denial-of-service attack program which allows an attacker to overwh
An end-to-end encrypted, anonymous IP-hiding, decentralized, audio/video/file sharing/offline messaging multi-device platform built for both communications and application security and performance.
An end-to-end encrypted, anonymous IP-hiding, decentralized, audio/video/file sharing/offline messaging multi-device platform built for both communications and application security and performance.
Testing a smart contract on the Solana blockchain
Environment Setup Install Rust from https://rustup.rs/ Install Solana from https://docs.solana.com/cli/install-solana-cli-tools#use-solanas-install-to
Cross-platform GUI written in Rust using ADB to debloat non-rooted android devices. Improve your privacy, the security and battery life of your device.
Universal Android Debloater GUI DISCLAIMER: Use it at your own risk. I am not responsible for anything that could happen to your phone. This software
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
✅ Automate your key and secret validation workflows 🤠 Over 30 different providers 🤖 Export to JSON, audit via CSV 🔑 Keyscope Keyscope is a key and
A suite of programs for Solana key management and security.
🔑 goki Goki is a suite of programs for Solana key management and security. It currently features: Goki Smart Wallet: A wallet loosely based on the Se
service_policy_kit is a Rust based toolkit for verifying HTTP services against policies.
Service Policy Kit service_policy_kit is a Rust based toolkit for verifying HTTP services against policies. You can: Build a complete testing framewor
A library for comparing data structures in Rust, oriented toward testing
Delta: Structural differencing in Rust The delta crate defines the trait Delta, along with a derive macro for auto-generating instances of this trait
Simple 2d pinball game for testing of bevy and rapier.
Pinball2D Using the Bevy game engine and Rapier physics engine for a simple 2D pinball game. pinball2d.mov Wrote a short piece about how the game was
kloak-rs: alternative implementation of kloak
An anti keystroke deanonymization tool that introduces random delays between key presses and releases to deter adversaries that use keystroke timing for identification.
Automate device security provisioning with edge intelligence.
UNiD Automate device security provisioning with edge intelligence Features Decentralized PKI(DPKI), DIDs, DKMS, and Credential Management End-to-End E
Fluent test assertions for Rust.
This is a fork the unmaintained crate spectral. Spectral as not changed for five years and yet is still very usable, the goal of this fork is to add n
weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interesting functionality in large codebases.
weggli Introduction weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify int
Loom is a concurrency permutation testing tool for Rust.
Loom is a testing tool for concurrent Rust code
Fluent assertion library for Rust with readable messages.
Assertor Assertor makes test assertions and failure messages more human-readable. Assertor is heavily affected by Java Truth in terms of API design an
A dead simple functional testing tool for command line applications
Pharaoh : build that test pyramid! What it is Pharaoh is a dead simple, no permission needed, functional test runner for command line applications, wr
Rust library for developing safe canisters.
IC Kit This library provides an alternative to ic-cdk that can help developers write canisters and unit test them in their Rust code. Install Add this