gralperic's Stars
localstack/localstack
💻 A fully functional local AWS cloud stack. Develop and test your cloud & Serverless apps offline
danielmiessler/fabric
fabric is an open-source framework for augmenting humans using AI. It provides a modular framework for solving specific problems using a crowdsourced set of AI prompts that can be used anywhere.
GoogleContainerTools/distroless
🥑 Language focused docker images, minus the operating system.
fail2ban/fail2ban
Daemon to ban hosts that cause multiple authentication errors
awslabs/git-secrets
Prevents you from committing secrets and credentials into git repositories
BloodHoundAD/BloodHound
Six Degrees of Domain Admin
docker/docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
SigmaHQ/sigma
Main Sigma Rule Repository
bridgecrewio/checkov
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
nccgroup/ScoutSuite
Multi-Cloud Security Auditing Tool
rmusser01/Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
RhinoSecurityLabs/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
open-policy-agent/conftest
Write tests against structured configuration data using the Open Policy Agent Rego query language
cncf/tag-security
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
nccgroup/PMapper
A tool for quickly evaluating IAM permissions in AWS.
andresriancho/enumerate-iam
Enumerate the permissions associated with AWS credential set
RhinoSecurityLabs/Security-Research
Exploits written by the Rhino Security Labs team
WithSecureLabs/awspx
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
mytechnotalent/Python-For-Kids
A FREE comprehensive online Python development tutorial FOR KIDS utilizing an official BBC micro:bit Development Board going step-by-step into the world of Python for microcontrollers.
michenriksen/drawio-threatmodeling
Draw.io libraries for threat modeling diagrams
RhinoSecurityLabs/ccat
Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
WithSecureLabs/leonidas
Automated Attack Simulation in the Cloud, complete with detection use cases.
dev-sec/cis-docker-benchmark
CIS Docker Benchmark - InSpec Profile
terraform-aws-modules/terraform-aws-notify-slack
Terraform module to create AWS resources for sending notifications to Slack 🇺🇦
rams3sh/Aaia
AWS Identity and Access Management Visualizer and Anomaly Finder
nigelpoulton/k8s-sample-apps
Kubernetes application example tutorials
aws-samples/amazon-guardduty-multiaccount-scripts
This script automates the process of running the GuardDuty multi-account workflow across a group of accounts that are in your control
Yelp/detect-secrets-server
cloudogu/k8s-security-demos
Demos for several kubernetes security features
marco-lancini/cartography-queries
Utilities for programmatic analysis of Cartography data.