dmellonielet's Stars
TalEliyahu/Threat_Model_Examples
Collection of Threat Models
pushsecurity/saas-attacks
Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown
anthropics/courses
Anthropic's educational courses
securitytemplates/sectemplates
Open source templates you can use to bootstrap your security programs
HadessCS/Red-team-Interview-Questions
Red team Interview Questions
charlax/professional-programming
A collection of learning resources for curious software engineers
OWASP/www-project-proactive-controls
OWASP Foundation Web Respository
systemdesign42/system-design
A resource to help you pass system design interview and become good at work 👇
jordan-cutler/path-to-senior-engineer-handbook
All the resources you need to get to Senior Engineer and beyond
FujiwaraChoki/MoneyPrinter
Automate Creation of YouTube Shorts using MoviePy.
cloud-custodian/cloud-custodian
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
owasp-modsecurity/ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
eugeneyan/llm-paper-notes
Notes from the Latent Space paper club. Follow along or start your own!
firstprinciplesecurity/Security-Design-Review
awslabs/threat-composer
A simple threat modeling tool to help humans to reduce time-to-value when threat modeling
yoavbls/pretty-ts-errors
🔵 Make TypeScript errors prettier and human-readable in VSCode 🎀
timlrx/tailwind-nextjs-starter-blog
This is a Next.js, Tailwind CSS blogging starter template. Comes out of the box configured with the latest technologies to make technical writing a breeze. Easily configurable and customizable. Perfect as a replacement to existing Jekyll and Hugo individual blogs.
trufflesecurity/how-to-rotate
An open-source collection of API key rotation tutorials.
ossf/scorecard
OpenSSF Scorecard - Security health metrics for Open Source
certsocietegenerale/IRM
Incident Response Methodologies 2022
spf13/cobra
A Commander for modern Go CLI interactions
swyxio/brain
Swyx's second brain!
cisagov/untitledgoosetool
Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in order to run a full investigation against a customer’s Azure Active Directory (AzureAD), Azure, and M365 environments.
trailofbits/publications
Publications from Trail of Bits
OWASP/API-Security
OWASP API Security Project
trufflesecurity/trufflehog
Find, verify, and analyze leaked credentials
mazen160/secrets-patterns-db
Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
jacobdjwilson/awesome-annual-security-reports
A curated list of annual cyber security reports
xNok/slack-go-demo-socketmode
Demo the use of Socket Mode to build SlackBots in Golang. An attempt to improve https://github.com/slack-go/slack.
edgeroute/security-champion-framework
The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.