M1S2G3's Stars
duyet/bruteforce-database
Bruteforce database
WebBreacher/offensiveinterview
Interview questions to screen offensive (red team/pentest) candidates
jgamblin/MacOS-Security-Baseline
Baseline Security Configuration For MacOS
dvyakimov/Mind-map-web
Майнд-карта для совместного структурирования проблем с безопасностью веб-приложений и подборки решений для них.
goq/telegram-list
List of telegram groups, channels & bots // Список интересных групп, каналов и ботов телеграма // Список чатов для программистов
OWASP/threat-dragon
An open source threat modeling tool from OWASP
certsocietegenerale/NotifySecurity
Outlook add-in companion to report suspicious mail easily
Swordfish-Security/awesome-devsecops-russia
Awesome DevSecOps на русском языке
Vinum-Security/kubernetes-security-checklist
Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, workloads, dockerfile)
slsa-framework/slsa
Supply-chain Levels for Software Artifacts
semgrep/semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
sbilly/awesome-security
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
analysis-tools-dev/static-analysis
⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
dvyakimov/BSIMM_ru
Перевод BSIMM (https://www.bsimm.com) на русский язык
payloadbox/sql-injection-payload-list
🎯 SQL Injection Payload List
devopshq/dohq-ai-best-practices
Внедрение и эксплуатация PT Application Inspector. Подробнее: https://habr.com/ru/company/pt/blog/557142/
toxic-repos/toxic-repos
We are against discrediting open source software
AlDanial/cloc
cloc counts blank lines, comment lines, and physical lines of source code in many programming languages.
DotNetAnalyzers/StyleCopAnalyzers
An implementation of StyleCop rules using the .NET Compiler Platform
rtyley/bfg-repo-cleaner
Removes large or troublesome blobs like git-filter-branch does, but faster. And written in Scala
soxoj/counter-osint-guide-ru
Исчерпывающее руководство по приватности и контр-ОСИНТ для Рунета и всего СНГ 🇷🇺
Lissy93/personal-security-checklist
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024
OWASP/Top-5-Machine-Learning-Risks
The OWASP Top 5 Machine Learning Risks[edit | edit source] The idea is to build the required resources which help software security community to understand the emerging technology of machine learning and how it is related to security, warn them about the risk associated with using ML, and discuss the defending techniques. Description[edit | edit source] Machine Learning has recently re-emerged as a powerful tool in multiple business sectors, especially when it is used for Predictive Analytics at the scale of Big Data. This technique becomes vital when it is harnessed for the Security services and applications like Fraud Detection, Anomaly Detection, Behavioral Analysis
13o-bbr-bbq/machine_learning_security
Source code about machine learning and security.
chan0park/VoynaSlov
boostsecurityio/supply-chain-research
boostsecurityio/supply-chain-research
deepfence/yara-rules
rung/threat-matrix-cicd
Threat matrix for CI/CD Pipeline
hahwul/DevSecOps
♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎
OWASP/DevSecOpsGuideline
The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.