bendehaan's Stars
OWASP/wrongsecrets
Vulnerable app with examples showing how to not use secrets
tldrsec/awesome-secure-defaults
Awesome secure by default libraries to help you eliminate bug classes!
revolution-model/introduction
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
basecamp/kamal
Deploy web apps anywhere.
theburningmonk/appsyncmasterclass-backend
Backend for the AppSync Masterclass demo app
aws-samples/hardeneks
Runs checks to see if an EKS cluster follows EKS Best Practices.
getzola/zola
A fast static site generator in a single binary with everything built-in. https://www.getzola.org
OWASP/wrongsecrets-ctf-party
Run Capture the Flags and Security Trainings with OWASP WrongSecrets
wagoodman/dive
A tool for exploring each layer in a docker image
bschaatsbergen/terraformbyexample
Terraform by example
OWASP/wrongsecrets-binaries
Source code for the Binaries of OWASP WrongSecrets
OWASP/www-project-wrongsecrets
OWASP Foundation Web Respository
OWASP/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
aidansteele/cloudkey
No need for IAM users when we have Yubikeys
SummitRoute/csp_security_mistakes
This repo has been replaced by https://www.cloudvulndb.org
ljacobsson/cfn-diagram
CLI tool to visualise CloudFormation/SAM/CDK stacks as visjs networks, draw.io or ascii-art diagrams.
microsoft/IoT-For-Beginners
12 Weeks, 24 Lessons, IoT for All!
awslabs/aws-security-analytics-bootstrap
AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena analysis environment that's quick to deploy, ready to use, and easy to maintain.
cncf/tag-security
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
toniblyx/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
MarcGrol/go-training
Interactive training on the go-language
nqthqn/one-page
Just want one stupid page? Use this as a boilerplate — includes live reloading and scss compiling.
salesforce/aws-allowlister
Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frameworks.
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
cve-search/cve-search
cve-search - a tool to perform local searches for known vulnerabilities
Rigellute/spotify-tui
Spotify for the terminal written in Rust 🚀
flosell/iam-policy-json-to-terraform
Small tool to convert an IAM Policy in JSON format into a Terraform aws_iam_policy_document
awslabs/aws-cfn-template-flip
Tool for converting AWS CloudFormation templates between JSON and YAML formats.
benno001/aws-iam-access-key-rotator
Helper script for rotating credentials