326 Repositories
Rust security-tools Libraries
Firecracker takes your HTTP logs and uses them to map your API flows and to detect anomalies in them.
Who is BLST and what do we do? BLST (Business Logic Security Testing) is a startup company that's developing an automatic penetration tester, replacin
A scalable, distributed, collaborative, document-graph database, for the realtime web
is the ultimate cloud database for tomorrow's applications Develop easier. Build faster. Scale quicker. What is SurrealDB? SurrealDB is an end-to-end
Android-related tools for building and developing applications 🛠
Rust Android Tools Android-related tools for building and developing applications: Name Description Status aapt2 Android Asset Packaging Tool ✅ bundle
Devops kafka topics like files with kls, ktail, khead and kecho
Devops kafka topics like files with kls, ktail, khead and kecho
Devops kafka like ls, tail, head,and echo with kls, ktail, khead and kecho
Kafka CLI Tools DevOps topics of Message Queue(eg kafka, pulsar, rabbitmq) like ls, echo, head and tail with kls, kecho, khead and ktail Getting Start
Fixture-based test framework for Rust
Fixture-based test framework for Rust Introduction rstest uses procedural macros to help you on writing fixtures and table-based tests. To use it, add
Audit Cargo.lock files for dependencies with security vulnerabilities
RustSec Crates 🦀 🛡️ 📦 The RustSec Advisory Database is a repository of security advisories filed against Rust crates published via crates.io. The a
Applied offensive security with the Rust programming language
Black Hat Rust Applied offensive security with the Rust programming language Buy the book now! While the Rust Book does an excellent job teaching What
Minimal and persistent key-value store designed with security in mind
microkv Minimal and persistent key-value store designed with security in mind. Introduction microkv is a persistent key-value store implemented in Rus
Bindings to the macOS Security.framework
macOS/iOS Security framework for Rust Documentation Bindings to the Apple's Security.framework. Allows use of TLS and Keychain from Rust. License Lice
A Rust implementation of the Message Layer Security group messaging protocol
Molasses An extremely early implementation of the Message Layer Security group messaging protocol. This repo is based on draft 4 of the MLS protocol s
Secure storage for cryptographic secrets in Rust
secrets secrets is a library to help Rust programmers safely held cryptographic secrets in memory. It is mostly an ergonomic wrapper around the memory
Small container runtime for threat detection
confine Containers, but for dynamic malware analysis confine is a container runtime for dynamically analyzing suspicious executables. Given a sample s
The Swiss Army Knife for Binary (In)security
binsec Swiss Army Knife for Binary (In)security binsec is a minimal static analysis utility for detecting security capabilities in ELF/PE/Mach-O execu
Custom memory allocator that helps discover reads from uninitialized memory
libdiffuzz: security-oriented alternative to Memory Sanitizer This is a drop-in replacement for OS memory allocator that can be used to detect uses of
A utility like pkg-audit for Arch Linux. Based on Arch Security Team data.
arch-audit pkg-audit-like utility for Arch Linux. Based on data from security.archlinux.org collected by the awesome Arch Security Team. Installation
A cryptographically verifiable code review system for the cargo (Rust) package manager.
image credit cargo-crev A cryptographically verifiable code review system for the cargo (Rust) package manager. Introduction Crev is a language and ec
Find the ideal fuzz targets in a Rust codebase
Siderophile Siderophile finds the "most unsafe" functions in your Rust codebase, so you can fuzz them or refactor them out entirely. It checks the cal
Independent verification of binary packages - reproducible builds
rebuilderd(1) Independent verification system of binary packages. Accessing a rebuilderd instance in your browser Scripting access to a rebuilderd ins
OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards.
OpenSK This repository contains a Rust implementation of a FIDO2 authenticator. We developed OpenSK as a Tock OS application. We intend to bring a ful
An implementation of webauthn components for Rustlang servers
Webauthn-rs Webauthn is a modern approach to hardware based authentication, consisting of a user with an authenticator device, a browser or client tha
A paseto implementation in rust.
Paseto Rust Paseto is everything you love about JOSE (JWT, JWE, JWS) without any of the many design deficits that plague the JOSE standards. This is d
Use explicit container types with Scrypto! Leverage the Rust compiler's type checking to increase security and productivity when developing Radix blueprints.
Scrypto Static Types Use explicit container types with Scrypto! Leverage the Rust compiler's type checking to increase security and productivity when
suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.
suidsnoop Log suid binaries and enforce per-uid suid policy. suidsnoop is a tool for logging whenever a suid binary is executed on your system and opt
A clean and simple network looking glass application
lg lg is my custom Looking Glass server software for use in ZZANet. The whole application is lightweight, self-contained, and easy to use even outside
Ecosystem of libraries and tools for writing and executing fast GPU code fully in Rust.
The Rust CUDA Project An ecosystem of libraries and tools for writing and executing extremely fast GPU code fully in Rust Guide | Getting Started | Fe
Decode, explore, and sign JWTs
JWT Explorer A utility for inspecting, modifying, and attacking JWTs. Supports Windows and Linux and probably also works on macOS but this has not bee
An uploader honeypot designed to look like poor website security.
HoneyUp An uploader honeypot designed to look like poor website security. Requirements Linux server NGiNX Rust toolchain (build only) Installation Bui
Ecosystem of libraries and tools for writing and executing extremely fast GPU code fully in Rust.
Ecosystem of libraries and tools for writing and executing extremely fast GPU code fully in Rust.
Audit Cargo.lock files for dependencies with security vulnerabilities
RustSec Crates 🦀 🛡️ 📦 The RustSec Advisory Database is a repository of security advisories filed against Rust crates published via crates.io. The a
End-to-end encryption and mutual authentication for distributed applications.
✨ Hands-on Introduction: Build end-to-end encrypted, mutually-authenticated, secure messaging in Rust ✨ Rust and Elixir libraries for end-to-end encry
Tools for working with Twitter JSON data
Twitter stream user info extractor This project lets you parse JSON data from the Twitter API or other sources to extract some basic user information,
Multi-threaded Padding Oracle attacks against any service. Written in Rust.
rustpad is a multi-threaded successor to the classic padbuster, written in Rust. It abuses a Padding Oracle vulnerability to decrypt any cypher text or encrypt arbitrary plain text without knowing the encryption key!
(Ab)using technology for fun & profit.
(Ab)using technology for fun & profit. Code accompanying my blog
A system clipboard command line tools which inspired by pbcopy & pbpaste but better to use.
rclip A command line tool which supports copy a file contents to the system clipboard or copy the contents of the system clipboard to a file. Install
Lightweight slowloris (HTTP DoS) implementation in Rust.
slowlorust Lightweight slowloris (HTTP DoS) implementation in Rust. Slowloris is a denial-of-service attack program which allows an attacker to overwh
An end-to-end encrypted, anonymous IP-hiding, decentralized, audio/video/file sharing/offline messaging multi-device platform built for both communications and application security and performance.
An end-to-end encrypted, anonymous IP-hiding, decentralized, audio/video/file sharing/offline messaging multi-device platform built for both communications and application security and performance.
Some tools for streaming frames to rpi-rgb-led-matrix using ZeroMQ, written in Rust.
led_matrix_zmq Some tools for streaming frames to rpi-rgb-led-matrix using ZeroMQ, written in Rust. This repository includes: Rust client and server l
Cross-platform GUI written in Rust using ADB to debloat non-rooted android devices. Improve your privacy, the security and battery life of your device.
Universal Android Debloater GUI DISCLAIMER: Use it at your own risk. I am not responsible for anything that could happen to your phone. This software
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
✅ Automate your key and secret validation workflows 🤠 Over 30 different providers 🤖 Export to JSON, audit via CSV 🔑 Keyscope Keyscope is a key and
A suite of programs for Solana key management and security.
🔑 goki Goki is a suite of programs for Solana key management and security. It currently features: Goki Smart Wallet: A wallet loosely based on the Se
service_policy_kit is a Rust based toolkit for verifying HTTP services against policies.
Service Policy Kit service_policy_kit is a Rust based toolkit for verifying HTTP services against policies. You can: Build a complete testing framewor
A document-code sync tools for document engineering.
Writing A document-code sync tools for document engineering. Writing 是一个自动 “文档-代码” 同步工具。解析 Markdown 中的代码定义,读取目标代码,并嵌入到新的文档中。 Language parse support by
A Github Actions based CI release template for Rust binaries
Rust CI Release Template A Github Actions based CI release template. This repo serves as a live template, and reference for building your own CI power
kloak-rs: alternative implementation of kloak
An anti keystroke deanonymization tool that introduces random delays between key presses and releases to deter adversaries that use keystroke timing for identification.
Automate device security provisioning with edge intelligence.
UNiD Automate device security provisioning with edge intelligence Features Decentralized PKI(DPKI), DIDs, DKMS, and Credential Management End-to-End E
Spot coupling by finding out which files are always in the same commit
git moves-together This tells you when files in the repository frequently move together. This lets you identify where the coupling is in the system. C
Postgres proxy which allows tools that don't natively supports IAM auth to connect to AWS RDS instances.
rds-iamauth-proxy rds-proxy lets you make use of IAM-based authentication to AWS RDS instances from tools that don't natively support that method of a
Very overengineered Brainfuck compiler tools
BFVM - The overengineered brainfuck compiler tool Why? just learning about some codegen stuff Why so pathetic? The whole concept is pathetic. This is
CLI tools to process cryptocurrency data
crypto-cli-tools A collection of CLI tools to process cryptocurrency data. Install: RUSTFLAGS="-C target-cpu=native" cargo install crypto-cli-tools cr
weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interesting functionality in large codebases.
weggli Introduction weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify int
Zei is a library that provide tools to create and verify public transaction with confidential data.
#Zei: Findora's Cryptographic Library Zei is a library that provide tools to create and verify public transaction with confidential data. Support: Bas
A CLI development tool for WebSocket APIs
A CLI development tool for WebSocket APIs
better tools for text parsing
nom-text Goal: a library that extends nom to provide better tools for text formats (programming languages, configuration files). current needs Recogni
Rust 核心库和标准库的源码级中文翻译,可作为 IDE 工具的智能提示 (Rust core library and standard library translation. can be used as IntelliSense for IDE tools)
Rust 标准库中文版 这是翻译 Rust 库 的地方, 相关源代码来自于 https://github.com/rust-lang/rust。 如果您不会说英语,那么拥有使用中文的文档至关重要,即使您会说英语,使用母语也仍然能让您感到愉快。Rust 标准库是高质量的,不管是新手还是老手,都可以从中
🧵 Generate self-describing strings of a given length to help aid software testing
rust-counter-strings Counter strings generator written in rust to help aid software testing What is a counterstring? "A counterstring is a graduated s
Libreddit - An alternative private front-end to Reddit
Libreddit - An alternative private front-end to Reddit
Experimental binary transparency for pacman with sigstore and rekor
pacman-bintrans This is an experimental implementation of binary transparency for pacman, the Arch Linux package manager. This project was originally
Tools to encrypt/decrypt and pack/unpack RouterOS v6.13+ backup files
RouterOS-Backup-Tools Tools to encrypt/decrypt and pack/unpack RouterOS v6.13+ backup files Usage examples Info cargo run -- info -i MikroTik.backup D
Shisho is a lightweight static analyzer for developers.
Lightweight static analyzer for several programming languages
Voila is a domain-specific language launched through CLI tool for operating with files and directories in massive amounts in a fast & reliable way.
Voila is a domain-specific language designed for doing complex operations to folders & files. It is based on a CLI tool, although you can write your V
A set of tools for generating signed exchanges at serve time.
sxg-rs sxg-rs is a set of tools for generating signed exchanges at serve time: cloudflare_worker runs on Cloudflare Workers. fastly_compute runs on Fa
System Tools with real-time Web UI
MultiTool System Tools with real-time Web UI. The project uses RillRate - Dynamic UI for bots, microservices, and IoT. Included Implemented: System Mo
Ruo is a dictionary-based password cracker written in rust 🦀 .
Ruo is a dictionary-based password cracker written in rust 🦀 . The primary purpose is to crack weak hashes/commonly used passwords.
System Tools with real-time Web UI
HeroicToys The remake of useful CLI tools, but with Web UI. The project uses RillRate - Dynamic UI for bots, microservices, and IoT.
Automated attack surface mapper and vulnerability scanner
Phaser Automated attack surface mapper and vulnerability scanner What is this? Phaser is a high-performance and automated attack surface mapper and vu
Detects orphan configmaps and secrets in a Kubernetes cluster
KubExplorer Warning: Proof of concept. Feedback is much welcome. Discovers and prints out any Configmaps and Secrets not linked to any of the followin
A Rust implementation of the Message Layer Security group messaging protocol
Molasses An extremely early implementation of the Message Layer Security group messaging protocol. This repo is based on draft 4 of the MLS protocol s
Secure storage for cryptographic secrets in Rust
secrets secrets is a library to help Rust programmers safely held cryptographic secrets in memory. It is mostly an ergonomic wrapper around the memory
The Swiss Army Knife for Binary (In)security
binsec Swiss Army Knife for Binary (In)security binsec is a minimal static analysis utility for detecting security capabilities in ELF/PE/Mach-O execu
Custom memory allocator that helps discover reads from uninitialized memory
libdiffuzz: security-oriented alternative to Memory Sanitizer This is a drop-in replacement for OS memory allocator that can be used to detect uses of
A utility like pkg-audit for Arch Linux. Based on Arch Security Team data.
arch-audit pkg-audit-like utility for Arch Linux. Based on data from security.archlinux.org collected by the awesome Arch Security Team. Installation
A cryptographically verifiable code review system for the cargo (Rust) package manager.
image credit cargo-crev A cryptographically verifiable code review system for the cargo (Rust) package manager. Introduction Crev is a language and ec
Find the ideal fuzz targets in a Rust codebase
Siderophile Siderophile finds the "most unsafe" functions in your Rust codebase, so you can fuzz them or refactor them out entirely. It checks the cal
OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards.
OpenSK This repository contains a Rust implementation of a FIDO2 authenticator. We developed this as a Tock OS application and it has been successfull
An implementation of webauthn components for Rustlang servers
Webauthn-rs Webauthn is a modern approach to hardware based authentication, consisting of a user with an authenticator device, a browser or client tha
A paseto implementation in rust.
Paseto Rust Paseto is everything you love about JOSE (JWT, JWE, JWS) without any of the many design deficits that plague the JOSE standards. This is d
Curated list of awesome projects and resources related to Rust and computer security
Awesome Rust Security Curated list of awesome projects and resources related to Rust and computer security Table of Contents Tools Web and Cloud Secur
A fast tool to scan prototype pollution vulnerability written in Rust. 🦀
ppfuzz Prototype Pollution Fuzzer A fast tool to scan prototype pollution vulnerability written in Rust. 🦀 Installation Binary Source Dependencies Us
ArchTest is a rule based architecture testing tool for rust
ArchTest is a rule based architecture testing tool. It applies static analyses on the specified rust project to extract use relationships.
Modeling is a tools to analysis different languages by Ctags
Modeling Modeling is a tools to analysis different languages by Ctags process: generate to opt call ctags with opt analysis ctags logs output resulse
PartiQL libraries and tools in Rust.
This is a collection of crates to provide Rust support for the PartiQL query language.
Competitive Programming Stress Test Tools
Competitive Programming Stress Test Tools 競技プログラミング用 ストレステストツール このプログラムの役割 のプログラムに対して,それより実行時間がかかるが確実に できる愚直プログラムと比較することで, となるテストケースを探し出す 最大コーナーケースに対し
Daemon and tools to control your ASUS ROG laptop. Supersedes rog-core.
asusctl for ASUS ROG - Asus Linux Website asusd is a utility for Linux to control many aspects of various ASUS laptops but can also be used with non-a
Imagine your SSH server only listens on an IPv6 address, and where the last 6 digits are changing every 30 seconds as a TOTP code...
tosh Imagine your SSH server only listens on an IPv6 address, and where the last 6 digits are changing every 30 seconds as a TOTP code... Inspired fro
A safe Rust FFI binding for the NVIDIA® Tools Extension SDK (NVTX).
NVIDIA® Tools Extension SDK (NVTX) is a C-based Application Programming Interface (API) for annotating events, code ranges, and resources in your applications. Official documentation for NVIDIA®'s NVTX can be found here.
Simulation tools for animating interacting soft objects
Softy Simulation tools and libraries for animating rigid and soft objects (including cloth) subject to frictional contacts against smooth implicit sur
server security proxy write by Rust
server-security-proxy server security proxy write by Rust how to use config toml file
Imagine the information security compliance guideline says you need an antivirus but you run Arch Linux
libredefender Imagine the information security compliance guideline says you need an antivirus but you run Arch Linux. libredefender is an antivirus p
Call is an easy-to-use command tools for remote development.
Call is an easy-to-use command tools for remote development. It helps you to build remote development easily and elegant. It can work with makefile and justfile.
Hidden parameters discovery suite
x8 Hidden parameters discovery suite written in Rust. How does it work Features Examples Send parameters via query Send parameters via body Custom tem
A cryptographically verifiable code review system for the cargo (Rust) package manager.
A cryptographically verifiable code review system for the cargo (Rust) package manager.
A CLI utility to secretly copy secrets to your clipboard. 🦀
seclip 🔒 📝 A CLI utility to secretly copy secrets to your clipboard. 🦀 Table of Contents Features Installation Usage Build From Source Contribution
Tools for managing GitHub block lists
GitHub block list management Octocrabby is a small set of command-line tools and Octocrab extensions that are focused on managing block lists on GitHu
Temporary edit external crates that your project depends on
rhack You want to quickly put a sneaky macro kind of like dbg! into external crates to find out how some internal data structure works? If so rhack is
⋰·⋰ Feeless is a Nano cryptocurrency node, wallet, tools, and Rust crate.
⋰·⋰ Feeless What is Feeless? Feeless is a Nano cryptocurrency node, wallet, tools, and Rust crate. This is not the official project for Nano, only an
Applied offensive security with Rust
Black Hat Rust - Early Access Deep dive into offensive security with the Rust programming language Buy the book now! Summary Whether in movies or main
Modern Cryptographic Firmware
Trussed® Modern Cryptographic Firmware Status Very much WIP. Actively developed. Unstable APIs.
Windows shellcode development in Rust
Write Windows Shellcode in Rust Project overview Windows shellcode project is located in shellcode/, it can build into a PE file with only .text secti
Arch Linux Security Update Notifications
arch-audit-gtk Show an indicator if there are any security updates missing for your Arch Linux system. Install git clone https://aur.archlinux.org/arc