jondkent

jondkent's Stars

• OWASP/CheatSheetSeries

  The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

  Language:Python27.6k5714443.9k

• enaqx/awesome-pentest

  A collection of awesome penetration testing resources, tools and other shiny things

  21.4k1.2k374.4k

• kubernetes-sigs/kubespray

  Deploy a Production Ready Kubernetes Cluster

  Language:Jinja15.9k3124.1k6.4k

• tektoncd/pipeline

  A cloud-native Pipeline resource.

  Language:Go8.4k1312.9k1.8k

• aquasecurity/kube-bench

  Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

  Language:Go6.9k1084761.2k

• nccgroup/ScoutSuite

  Multi-Cloud Security Auditing Tool

  Language:Python6.6k1358681k

• cowrie/cowrie

  Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io

  Language:Python5.1k124965876

• aquasecurity/kube-hunter

  Hunt for security weaknesses in Kubernetes clusters

  Language:Python4.7k95216581

• Neo23x0/Loki

  Loki - Simple IOC and YARA Scanner

  Language:Python3.3k186171576

• cncf/tag-security

  🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!

  Language:HTML2k158532506

• slimm609/checksec.sh

  Checksec.sh

  Language:Roff2k54112299

• cider-security-research/cicd-goat

  A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

  Language:Python1.9k3127312

• lizrice/containers-from-scratch

  Writing a container in a few lines of Go code, as seen at DockerCon 2017 and on O'Reilly Safari

  Language:Go1.8k4310313

• slsa-framework/slsa

  Supply-chain Levels for Software Artifacts

  Language:Shell1.5k61415220

• certsocietegenerale/IRM-deprecated

  Incident Response Methodologies

  1k1081217

• atc-project/atomic-threat-coverage

  Actionable analytics designed to combat threats

  Language:Python96456100156

• controlplaneio/simulator

  Kubernetes Security Training Platform - focusing on security mitigation

  Language:Python9262112395

• chainguard-images/images

  Public Chainguard Images

  Language:HCL54326269140

• josephlimtech/linkedin-profile-scraper-api

  🕵️‍♂️ LinkedIn profile scraper returning structured profile data in JSON.

  Language:TypeScript5411037144

• in-toto/witness

  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.

  Language:Go4032516356

• threatcl/threatcl

  Documenting your Threat Models with HCL

  Language:Go397115621

• cncf/financial-user-group

  💰💸☁️ For those interested in running Kubernetes in highly regulated environments, particularly financial services

  298532067

• dev-sec/cis-kubernetes-benchmark

  CIS Kubernetes Benchmark - InSpec Profile

  Language:Ruby292191477

• tektoncd/chains

  Supply Chain Security in Tekton Pipelines

  Language:Go24515256126

• raesene/kube_security_lab

  Language:Shell230151241

• trailofbits/audit-kubernetes

  k8s audit repo

  Language:Go226505026

• buildsec/frsca

  Language:CUE2241310831

• jacobmammoliti/vault-terraform-demo

  Deploy HashiCorp Vault with Terraform in GKE.

  Language:HCL614138

• keithmccammon/python-attack-utils

  Hackish nonsense to interact with the MITRE ATT&CK API via Python

  Language:Python16000

• DrizzutoJr/sba_example_implementation

  Example Files for setting up Service Based Approach in Vault

  Language:HCL10