Pinned Repositories
acu807155
amazon-eks-use-sbom-to-find-container-image-with-vulnerable-software
This repo hosts Terraform code for generating and analyzing Software Bill of Materials (SBOM) for Amazon ECR images. It helps identify Amazon EKS images with vulnerable software components using Amazon Athena.
amazon-rekognition-id-verification-sample-with-amplify
This sample, built using AWS Amplify, is meant to showcase recommended flows when using Amazon Rekognition for Identity Verification.
assessment-tool
aws-env
Securely populate environment variables using KMS/SSM/Secrets manager on AWS.
aws-google-auth
Provides AWS STS credentials based on Google Apps SAML SSO auth (what a jumble!)
AWS-SAA-C02-Course
Personal notes for SAA-C02 test from: https://learn.cantrill.io
breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
DevSecOpsGuideline
The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.
helm4sec
List of helm-ready security tool to help your Security team easy deploy applications on Kubernetes.
ducthinh993's Repositories
ducthinh993/terraform-provider-kubectl
Terraform provider to handle raw kubernetes manifest yaml files
ducthinh993/terraform-helm-release
App release with terraform and helm
ducthinh993/useful-terraform-modules
Some useful terraform modules
ducthinh993/secret-detection
Finding your secret(Credential, API Key, AWS Key, Token, etc.) in your source code, files
ducthinh993/ecr-scan-lambda
Lambdas which does ECR scan and sends results to slack
ducthinh993/terraform-aws-eks
Terraform module to create an Elastic Kubernetes (EKS) cluster and associated worker instances on AWS
ducthinh993/helm4sec
List of helm-ready security tool to help your Security team easy deploy applications on Kubernetes.
ducthinh993/GitMonitor
GitMonitor is a Github scanning system to look for leaked sensitive information based on rules
ducthinh993/breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
ducthinh993/wazuh-lms
ducthinh993/wazuh-cloudformation
Wazuh - Amazon AWS Cloudformation
ducthinh993/macos-workspace
ducthinh993/oscp_checklist
ducthinh993/pentest_compilation
Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios
ducthinh993/public-pentesting-reports
Curated list of public penetration test reports released by several consulting firms and academic security groups
ducthinh993/tls-self-signed-cert
ducthinh993/pacbot
PacBot (Policy as Code Bot)
ducthinh993/Penetration-Testing
List of awesome penetration testing resources, tools and other shiny things
ducthinh993/private-tls-cert
A simple Terraform module to generate self-signed TLS certificates for private use
ducthinh993/terraform-aws-scanner
Terraform module which provides easy to configure AWS environment for running automated security scanning solutions at scheduled intervals.
ducthinh993/watchmen
(Not maintained anymore) Watchmen - AWS account compliance using centrally managed Config Rules