Appsecco

London, Bangalore, Boston

Pinned Repositories

attacking-cloudgoat2
A step-by-step walkthrough of CloudGoat 2.0 scenarios.
132 11 252
breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Language:CSS918 50 26255
bugcrowd-levelup-subdomain-enumeration
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
Language:Python626 29 4159
devsecops-using-cloudnative-workshop
This repo contains workshop material delivered at #nullcon2020
Language:HTML15 5 016
dvja
Damn Vulnerable Java (EE) Application
Language:CSS128 8 4428
dvna
Damn Vulnerable NodeJS Application
Language:SCSS676 26 6667
spaces-finder
A tool to hunt for publicly accessible DigitalOcean Spaces
Language:Python153 12 128
the-art-of-subdomain-enumeration
This repository contains all the supplement material for the book "The art of sub-domain enumeration"
Language:Python631 26 7153
using-docker-kubernetes-for-automating-appsec-and-osint-workflows
Repository for all the workshop content delivered at nullcon X on 1st of March 2019
Language:CSS81 7 139
vulnerable-apps
Language:Python214 21 064

Appsecco 's Repositories

appsecco/breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
Language:CSS918 50 26255
appsecco/dvna
Damn Vulnerable NodeJS Application
Language:SCSS676 26 6667
appsecco/bugcrowd-levelup-subdomain-enumeration
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
Language:Python626 29 4159
appsecco/vulnerable-apps
Language:Python214 21 064
appsecco/spaces-finder
A tool to hunt for publicly accessible DigitalOcean Spaces
Language:Python153 12 128
appsecco/attacking-cloudgoat2
A step-by-step walkthrough of CloudGoat 2.0 scenarios.
132 11 252
appsecco/dvja
Damn Vulnerable Java (EE) Application
Language:CSS128 8 4428
appsecco/defcon-26-workshop-attacking-and-auditing-docker-containers
DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
107 8 040
appsecco/sqlinjection-training-app
A simple PHP application to learn SQL Injection detection and exploitation techniques.
Language:PHP94 8 054
appsecco/VyAPI
VyAPI - A cloud based vulnerable hybrid Android App
Language:Java85 6 123
appsecco/using-docker-kubernetes-for-automating-appsec-and-osint-workflows
Repository for all the workshop content delivered at nullcon X on 1st of March 2019
Language:CSS81 7 139
appsecco/dvcsharp-api
Damn Vulnerable C# Application (API)
Language:C#67 3 5201
appsecco/opa-traefik-microservice-authz
Proof of concept implementation of a scenario using Open Policy Agent for microservices authorization in API Gateway (Traefik).
Language:JavaScript41 5 09
appsecco/raneto-docker
Docker container for Markdown based Raneto Knowledgebase
Language:JavaScript36 11 614
appsecco/sqlinjectionloginbypass
A simple app to demo SQL Injection login bypass
Language:PHP23 5 019
appsecco/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
22 3 08
appsecco/kubeseco
Application Security Workflow Automation using Docker and Kubernetes
Language:JavaScript22 6 212
appsecco/devsecops-using-cloudnative-workshop
This repo contains workshop material delivered at #nullcon2020
Language:HTML15 5 016
appsecco/c0c0n-2019-ctf-writeups
CTF write-ups from c0c0n 2019 CTF challenges that we participated
7 8 05
appsecco/prowler-aws-securityhub-integration
Using Prowler to Automate Compliance Checks for AWS CIS Benchmarks
Language:Python7 4 07
appsecco/django-rev-shell
A simple django app to provide a reverse shell when deployed and invoked.
Language:Python4 3 02
appsecco/nodejs-google-idp-sample
Presentation with proof of concept code on using Google as Identity Provider for Web API authentication using NodeJS as backend and VueJS as frontend
Language:JavaScript3 4 01
appsecco/asn-search-api
A Golang API over MaxMind ASN database
Language:Go2 4 03
appsecco/container-image-scanner-api
A minimalist Go API to scan Docker images for security vulnerabilities and weaknesses
Language:Go2 4 04
appsecco/secrets-in-google-cloud-run-with-google-cloud-build
Baking secrets in Google Cloud Run containers using Google Cloud Build
Language:Python2 5 02
appsecco/kube-scan
kube-scan: Octarine k8s cluster risk assessment tool
Language:Go1 2 02
appsecco/kubernetes-ptaas-scripts
Scripts to generate kubeconfig files required to perform a PT.
Language:Shell1 2 0
appsecco/anchore-engine
A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
Language:Python2 01
appsecco/J2M
[UNMAINTAINED] Convert from JIRA text formatting to GitHub Flavored MarkDown and back again
Language:JavaScript2 01
appsecco/kccss
Kubernetes Common Configuration Scoring System
Language:TypeScript2 01