#shell #applicationsecuritymonitoring #appsec_tutorials #devsecops #dongtai #dongtai_iast #iast #security
https://github.com/HXSecurity/DongTai
https://github.com/HXSecurity/DongTai
GitHub
GitHub - HXSecurity/DongTai: Dongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real…
Dongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real-time detection of common vulnerabilities in Java applications and third-party components throug...
#other #automation #awesome #awesome_list #aws #azure #ci_cd #cloud #containers #cybersecurity #devops #devsecops #docker #gcp #k8s #kubernetes #security #serverless #ssdlc #tool
https://github.com/sottlmarek/DevSecOps
https://github.com/sottlmarek/DevSecOps
GitHub
GitHub - sottlmarek/DevSecOps: Ultimate DevSecOps library
Ultimate DevSecOps library. Contribute to sottlmarek/DevSecOps development by creating an account on GitHub.
#typescript #compliance #data_anonymization #devsecops #gdpr #hardening #immutable_database #pci_dss #privacy_by_design #security #soc2 #tokenization #web_security #zero_trust
https://github.com/lunasec-io/lunasec
https://github.com/lunasec-io/lunasec
GitHub
GitHub - lunasec-io/lunasec: LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell…
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the Luna...
#go #devsecops #golang #mesh #mesh_networks #netmaker #network #networking #virtual_network #vpn #wireguard #zero_configuration #zero_trust #zero_trust_network
https://github.com/gravitl/netmaker
https://github.com/gravitl/netmaker
GitHub
GitHub - gravitl/netmaker: Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks.
Netmaker makes networks with WireGuard. Netmaker automates fast, secure, and distributed virtual networks. - gravitl/netmaker
#go #cis #devsecops #golang #misconfiguration #open_policy_agent #security #security_tools #software_supply_chain #software_supply_chain_security #vulnera
https://github.com/aquasecurity/chain-bench
https://github.com/aquasecurity/chain-bench
GitHub
GitHub - aquasecurity/chain-bench: An open-source tool for auditing your software supply chain stack for security compliance based…
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark. - aquasecurity/chain-bench
#go #containers #devsecops #docker #kubernetes #security #security_tools #ssh
https://github.com/ContainerSSH/ContainerSSH
https://github.com/ContainerSSH/ContainerSSH
GitHub
GitHub - ContainerSSH/ContainerSSH: ContainerSSH: Launch containers on demand
ContainerSSH: Launch containers on demand. Contribute to ContainerSSH/ContainerSSH development by creating an account on GitHub.
#go #aws #azure #cis #cloud #cnapp #cspm #cwpp #devops #devsecops #fdw #gcp #golang #hacktoberfest #kubernetes #postgresql #postgresql_fdw #security #sql #steampipe #terraform
https://github.com/turbot/steampipe
https://github.com/turbot/steampipe
GitHub
GitHub - turbot/steampipe: Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required. - turbot/steampipe
#html #analytics #appsec #automation #devsecops #django #hacktoberfest #kubernetes #owasp #python #security #security_automation #security_orchestration #vulnerability_correlation #vulnerability_databases #vulnerability_management
https://github.com/DefectDojo/django-DefectDojo
https://github.com/DefectDojo/django-DefectDojo
GitHub
GitHub - DefectDojo/django-DefectDojo: Open-Source Unified Vulnerability Management, DevSecOps & ASPM
Open-Source Unified Vulnerability Management, DevSecOps & ASPM - DefectDojo/django-DefectDojo
#go #awesome_list #collections #devops #devsecops #roadmap #security #tools
https://github.com/hahwul/DevSecOps
https://github.com/hahwul/DevSecOps
GitHub
GitHub - hahwul/DevSecOps: ♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎
♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎 - hahwul/DevSecOps
#python #appsec #cicd #ctf #devops #devsecops #infosec #jenkins #security
https://github.com/cider-security-research/cicd-goat
https://github.com/cider-security-research/cicd-goat
GitHub
GitHub - cider-security-research/cicd-goat: A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple…
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges. - cider-security-research/cicd-goat
#open_policy_agent #appsec #cloudnative #devsecops #golang #hacktoberfest #iac #infrastructure_as_code #open_policy_agent #security #security_tools #vulnerability_detection #vulnerability_scanners
https://github.com/Checkmarx/kics
https://github.com/Checkmarx/kics
GitHub
GitHub - Checkmarx/kics: Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development…
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx. - Checkmarx/kics
#java #aws #azure #ctf #devsecops #docker #gcp #hashicorp_vault #keepass #kubernetes #secrets #secrets_management #security #terraform_aws #terraform_azure #terraform_gcp #vault #vulnerable_web_app
https://github.com/OWASP/wrongsecrets
https://github.com/OWASP/wrongsecrets
GitHub
GitHub - OWASP/wrongsecrets: Vulnerable app with examples showing how to not use secrets
Vulnerable app with examples showing how to not use secrets - OWASP/wrongsecrets
#go #bounty #csv #devsecops #golang #graphviz #html #json #markdown #nmap #pentesting #port_scanner #port_scanning #scan #scanner #security #security_tools #sqlite #xml #xml_parsing
https://github.com/vdjagilev/nmap-formatter
https://github.com/vdjagilev/nmap-formatter
GitHub
GitHub - vdjagilev/nmap-formatter: A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot)…
A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot), sqlite, excel and d2-lang. Simply put it's nmap converter. - vdjagilev/nmap-formatter
👍2👌1
#html #blueteam #cloud_native #cloud_security #cloudsecurity #container #container_security #devsecops #docker #hacking #infrastructure #k8s #kubernetes #kubernetes_goat #kubernetes_security #owasp #pentesting #redteam #security #vulnerable_app
https://github.com/madhuakula/kubernetes-goat
https://github.com/madhuakula/kubernetes-goat
GitHub
GitHub - madhuakula/kubernetes-goat: Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes…
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀 - madhuakula/kubernetes-goat
👍3
#go #containers #devsecops #docker #go #golang #hacktoberfest #iac #infrastructure_as_code #kubernetes #misconfiguration #security #security_tools #vulnerability #vulnerability_detection #vulnerability_scanners
Trivy is a powerful tool that helps you find security issues in various places like container images, filesystems, Git repositories, and more. It checks for vulnerabilities, misconfigurations, sensitive information, and software licenses. Trivy supports many programming languages and platforms, making it very versatile. You can easily install it using methods like `brew install trivy` or `docker run aquasec/trivy`. It also integrates with popular tools like GitHub Actions and Kubernetes. Using Trivy helps you secure your projects by identifying potential security problems early, which is very beneficial for keeping your software safe and reliable.
https://github.com/aquasecurity/trivy
Trivy is a powerful tool that helps you find security issues in various places like container images, filesystems, Git repositories, and more. It checks for vulnerabilities, misconfigurations, sensitive information, and software licenses. Trivy supports many programming languages and platforms, making it very versatile. You can easily install it using methods like `brew install trivy` or `docker run aquasec/trivy`. It also integrates with popular tools like GitHub Actions and Kubernetes. Using Trivy helps you secure your projects by identifying potential security problems early, which is very beneficial for keeping your software safe and reliable.
https://github.com/aquasecurity/trivy
GitHub
GitHub - aquasecurity/trivy: Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories…
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more - aquasecurity/trivy