cloudnative-security Goto Github PK
Type: Organization
Type: Organization
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
A network sniffer that logs all DNS server replies for use in a passive DNS setup
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
The platform used to run picoCTF 2019.
IAM Least Privilege Policy Generator
Pomerium is an identity-aware access proxy.
Automatically perform Kubernetes cluster configuration checks using Open Policy Agent (OPA)
Turnkey sandbox projects demonstrating a wide variety of Prometheus use cases
Workshop: Cloud Native Monitoring with Prometheus & Grafana
Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf and more than 100 additional checks that help on GDPR, HIPAA and other security requirements.
Swiss Army knife Proxy tool for HTTP/HTTPS traffic capture, manipulation, and replay on the go.
A JOSE implementation in Python
This is a sample source code for the article published on Toptal: https://www.toptal.com/nodejs/secure-rest-api-in-nodejs
A sample node js api for finding cars and accounts for a dealership
This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.
Siege is an http load tester and benchmarking utility
Spring4Shell - Spring Core RCE - CVE-2022-22965
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
Subdomain Takeover tool written in Go
Fast subdomains enumeration tool for penetration testers
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
Offensive Terraform module which creates EC2 instance and reverse shell from an EC2 instance to attacker machine.
Setting up Prowler to run in a set of containers on ECS and save to S3
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
websites vulnerability scanner for termux
A fullstack Todo List built using Go/Gin/Postgres/React stack deployed using docker-compose
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.