jondkent's Stars
OWASP/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
enaqx/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
kubernetes-sigs/kubespray
Deploy a Production Ready Kubernetes Cluster
tektoncd/pipeline
A cloud-native Pipeline resource.
aquasecurity/kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
nccgroup/ScoutSuite
Multi-Cloud Security Auditing Tool
cowrie/cowrie
Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
aquasecurity/kube-hunter
Hunt for security weaknesses in Kubernetes clusters
Neo23x0/Loki
Loki - Simple IOC and YARA Scanner
cncf/tag-security
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
slimm609/checksec.sh
Checksec.sh
cider-security-research/cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
lizrice/containers-from-scratch
Writing a container in a few lines of Go code, as seen at DockerCon 2017 and on O'Reilly Safari
slsa-framework/slsa
Supply-chain Levels for Software Artifacts
certsocietegenerale/IRM-deprecated
Incident Response Methodologies
atc-project/atomic-threat-coverage
Actionable analytics designed to combat threats
controlplaneio/simulator
Kubernetes Security Training Platform - focusing on security mitigation
chainguard-images/images
Public Chainguard Images
josephlimtech/linkedin-profile-scraper-api
🕵️♂️ LinkedIn profile scraper returning structured profile data in JSON.
in-toto/witness
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
threatcl/threatcl
Documenting your Threat Models with HCL
cncf/financial-user-group
💰💸☁️ For those interested in running Kubernetes in highly regulated environments, particularly financial services
dev-sec/cis-kubernetes-benchmark
CIS Kubernetes Benchmark - InSpec Profile
tektoncd/chains
Supply Chain Security in Tekton Pipelines
raesene/kube_security_lab
trailofbits/audit-kubernetes
k8s audit repo
buildsec/frsca
jacobmammoliti/vault-terraform-demo
Deploy HashiCorp Vault with Terraform in GKE.
keithmccammon/python-attack-utils
Hackish nonsense to interact with the MITRE ATT&CK API via Python
DrizzutoJr/sba_example_implementation
Example Files for setting up Service Based Approach in Vault