TheGableMethod

Lifelong student in the art of security... Philosophy | Surfing | Boxing | BJJ | Motorcycles

USA

Pinned Repositories

aardvark
Aardvark is a multi-account AWS IAM Access Advisor API
Language:Python00
anchore-cli
Simple command-line client to the Anchore Engine service
Language:Python0 1 00
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Language:PowerShell0 1 00
awesome-appsec
A curated list of resources for learning about application security
Language:PHP00
awesome-devsecops
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
00
awesome-nodejs-security
Awesome Node.js Security resources
0 1 00
awesome-python-security
Awesome Python Security resources 🕶🐍🔐
00
awesome-security
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
00
streamlit-security-dashboards
Language:Python10

TheGableMethod's Repositories

TheGableMethod/streamlit-security-dashboards
Language:Python10
TheGableMethod/aardvark
Aardvark is a multi-account AWS IAM Access Advisor API
Language:Python00
TheGableMethod/aws-incident-response-runbooks
0 1 00
TheGableMethod/aws-serverless-security-workshop
In this workshop, you will learn techniques to secure a serverless application built with AWS Lambda, Amazon API Gateway and RDS Aurora. We will cover AWS services and features you can leverage to improve the security of a serverless applications in 5 domains: identity & access management, code, data, infrastructure, logging & monitoring.
Language:JavaScript1 0
TheGableMethod/aws-serverless-workshops
Code and walkthrough labs to set up serverless applications for Wild Rydes workshops
Language:JavaScript
TheGableMethod/aws_ir
Python installable command line utiltity for mitigation of host and key compromises.
Language:Python1 0
TheGableMethod/aws_ir_plugins
Core incident handling plugins for aws_ir cli, incident pony, and more.
Language:Python1 0
TheGableMethod/canape
CANAPE Network Testing Tool
Language:Python
TheGableMethod/checkov
Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes and other infrastructure-as-code-languages with Checkov by Bridgecrew.
Language:Python1 0
TheGableMethod/clair
Vulnerability Static Analysis for Containers
Language:Go1 0
TheGableMethod/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
1 0
TheGableMethod/DevSkim
DevSkim is a set of IDE plugins and rules that provide security "linting" capabilities.
Language:TypeScript1 0
TheGableMethod/diffy
Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.
Language:Python1 0
TheGableMethod/Empire
Empire is a PowerShell and Python post-exploitation agent.
Language:PowerShell1 0
TheGableMethod/juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Language:JavaScript1 0
TheGableMethod/kubernetes-goat
Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster.
Language:HTML1 0
TheGableMethod/lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Language:Shell1 0
TheGableMethod/NodeGoat
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
Language:HTML
TheGableMethod/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Language:Python1 0
TheGableMethod/PowerZure
PowerShell framework to assess Azure security
TheGableMethod/prowler
Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls listed here https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf and more than 100 additional checks that help on GDPR, HIPAA and other security requirements.
Language:Shell1 0
TheGableMethod/security-on-github
Language:JavaScript1 1
TheGableMethod/stethoscope-app
A desktop application that checks security-related settings and makes recommendations for improvements without requiring central device management or automated reporting.
Language:JavaScript1 0
TheGableMethod/Stormspotter
Azure Red Team tool for graphing Azure and Azure Active Directory objects
Language:Python1 0
TheGableMethod/super-linter
Combination of multiple linters to install as a GitHub Action
Language:Shell1 0
TheGableMethod/terraform-aws-wireguard
Terraform module to deploy WireGuard on AWS
Language:HCL1 0
TheGableMethod/terragoat
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
Language:HCL1 0
TheGableMethod/terragrunt
Terragrunt is a thin wrapper for Terraform that provides extra tools for working with multiple Terraform modules.
Language:Go1 0
TheGableMethod/Violent-Python
Code that I adapted from the "Violent Python" book
Language:HTML1 0
TheGableMethod/zaproxy
The OWASP ZAP core project
Language:Java1 0