araiaan Goto Github PK

31-days-of-api-security-tips

This challenge is Inon Shkedy's 31 days API Security Tips.

42crunch-security-audit-plugin

Jenkins plugin 42Crunch API Contract Security Audit

appsec_interview_qna

Common Security Interview Questions with Answers

aquatone

A Tool for Domain Flyovers

awesome-api-security

A collection of awesome API Security tools and resources.

awesome-devsecops

An authoritative list of awesome devsecops tools with the help from community experiments and contributions.

awesome-docker-security

📚 A curated list of awesome Docker security resources

awesome-k8s-security

A curated list for Awesome Kubernetes Security resources

awesome-rce-techniques

Awesome list of techniques to achieve Remote Code Execution on various apps!

aws-big-data-blog

aws-iam-privilege-escalation

A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.

aws-security-workshops

A collection of the latest AWS Security workshops

aws_scripts

Useful scripts for maintaining multiple AWS Accounts

azure-red-team

Azure Security Resources and Notes

blind-ssrf-chains

An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability

broken-link-checker

Find broken links, missing images, etc within your HTML.

bugbounty-cheatsheet

A list of interesting payloads, tips and tricks for bug bounty hunters.

burp-cph

Custom Parameter Handler extension for Burp Suite.

byp-sop

🏴‍☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴‍☠️

cartography

Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.

certified-kubernetes-security-specialist

Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.

cf-signer

Tool for signing and verifying the integrity of CloudFormation templates

changeme

A default credential scanner.

checkov

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes and other infrastructure-as-code-languages with Checkov by Bridgecrew.

cloudcustodian-policies

Cloud Custodian policy that logs unused security groups

cloudgoat

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

confused

Tool to check for dependency confusion vulnerabilities in multiple package management systems

container-hardening

scripts which help harden containers

container-security-checklist

Checklist for container security - devsecops practices

cve

Gather and update all available and newest CVEs with their PoC.