devhops's Stars
trufflesecurity/trufflehog
Find, verify, and analyze leaked credentials
projectdiscovery/katana
A next-generation crawling and spidering framework.
owasp-amass/amass
In-depth attack surface mapping and asset discovery
paramiko/paramiko
The leading native Python SSHv2 protocol library.
sqlfluff/sqlfluff
A modular SQL linter and auto-formatter with support for multiple dialects and templated code.
1N3/Sn1per
Attack Surface Management Platform
WebGoat/WebGoat
WebGoat is a deliberately insecure application
streaak/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
aws-samples/aws-cdk-examples
Example projects using the AWS CDK
infobyte/faraday
Open Source Vulnerability Management Platform
cycloidio/terracognita
Reads from existing public and private cloud providers (reverse Terraform) and generates your infrastructure as code on Terraform configuration
sindresorhus/pageres-cli
Capture website screenshots
RomanHotsiy/commitgpt
Automatically generate commit messages using ChatGPT
iknowjason/Awesome-CloudSec-Labs
Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
ktock/buildg
Interactive debugger for Dockerfile, with support for IDEs (VS Code, Emacs, Neovim, etc.)
benbalter/wordpress-to-jekyll-exporter
One-click WordPress plugin that converts all posts, pages, taxonomies, metadata, and settings to Markdown and YAML which can be dropped into Jekyll (or Hugo or any other Markdown and YAML based site engine).
flosell/trailscraper
A command-line tool to get valuable information out of AWS CloudTrail
SchumacherFM/wordpress-to-hugo-exporter
Hugo is static site generator written in golang. Wordpress is a tool for remote access to your server ;-) ❗️Contributions welcome!
dependency-check/dependency-check-sonar-plugin
Integrates Dependency-Check reports into SonarQube
kamranahmedse/aws-cost-cli
CLI tool to perform cost analysis on your AWS account with Slack integration
scribe-public/gitgat
Evaluate source control (GitHub) security posture
awslabs/assisted-log-enabler-for-aws
Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.
invictus-ir/ALFA
ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit logs and to perform automated forensic analysis on the audit logs using statistics and the MITRE ATT&CK Cloud Framework
DefectDojo/sample-scan-files
Sample scan files for testing DefectDojo imports
MaibornWolff/dd-import
A utility to (re-)import findings and language data into DefectDojo
aws-samples/authenticated-static-site
Checkmarx/Goatlin
(aka Kotlin Goat) - an intentionally vulnerable Kotlin application
cdklabs/awscdk-v1-stack-finder
brunocantisano/rpi-sonarqube
Raspberry Pi thats scans codes for analysis. Sonarqube is a tool that helps refatorate and checks for vulnerabilities in codes.
DefectDojo/cookiecutter-scanner-parser
A scanner parser template generator for DefectDojo