Stars
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
A curated list of resources for learning about application security
Find, verify, and analyze leaked credentials
A list of security companies that are open to remote working.
📝 Personal blog template for Jekyll
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics…
DevSecOps, ASPM, Vulnerability Management. All on one platform.
Command-line tool that allows searching and downloading app packages (known as ipa files) from the iOS App Store
📱 objection - runtime mobile exploration
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization. DevOps Interview Questions
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
This is the Ultimate Windows 10 Script from a creation from multiple debloat scripts and gists from github.
Arkime is an open source, large scale, full packet capturing, indexing, and database system.
Sysmon configuration file template with default high-quality event tracing
A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared …
Vulnerability Information Aggregator for CVEs
cve-search - a tool to perform local searches for known vulnerabilities
Vulnerability Patterns Detector for C# and VB.NET
A tool to prepare for GRE using command line terminal. Build in process.
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Fast SNMP brute force, enumeration, CISCO config downloader and password cracking script.
A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security I…
The best and simplest free open source web page change detection, website watcher, restock monitor and notification service. Restock Monitor, change detection. Designed for simplicity - Simply moni…