Pinned Repositories
awesome-nodejs-security
Awesome Node.js Security resources
awesome-nodejs-security
Awesome Node.js Security resources
awesome-web-security
🐶 A curated list of Web Security materials and resources.
continuous-threat-modeling
A Continuous Threat Modeling methodology
Defending-DevOps
Lab Material for the Two-Day Defending Modern DevOps Environments Course
kubernetes-security-workshop
Kubernertes security workshop
OWASP-Testing-Guide-v5
The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
www-project-cheat-sheets
OWASP Foundation Web Respository
mackowski's Repositories
mackowski/OWASP-Testing-Guide-v5
The OWASP Testing Guide includes a "best practice" penetration testing framework which users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.
mackowski/awesome-nodejs-security
Awesome Node.js Security resources
mackowski/awesome-web-security
🐶 A curated list of Web Security materials and resources.
mackowski/continuous-threat-modeling
A Continuous Threat Modeling methodology
mackowski/Defending-DevOps
Lab Material for the Two-Day Defending Modern DevOps Environments Course
mackowski/kubernetes-security-workshop
Kubernertes security workshop
mackowski/web-methodology
Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
mackowski/wg-security-tooling
Security tools for open source.
mackowski/ASVS
Application Security Verification Standard
mackowski/BlackHatPython
mackowski/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
mackowski/CISL
Columnstore Indexes Scripts Library
mackowski/ctf-katana
This repository aims to hold suggestions (and hopefully/eventually code) for CTF challenges. The "project" is nicknamed Katana.
mackowski/django-DefectDojo
DefectDojo is an open-source application vulnerability correlation and security orchestration tool.
mackowski/find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
mackowski/GH-Copilot
mackowski/hello-world-javascript-action
mackowski/LavaMoat
tools for sandboxing your dependency graph
mackowski/netlify
mackowski/owasp-change.github.io
An Open Letter to the OWASP Board
mackowski/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
mackowski/pipelines-dotnet-core
A simple ASP.NET Core MVC app for Azure Pipelines docs
mackowski/postMessage-tracker
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
mackowski/rules-owasp-asvs
Semgrep rules corresponding to the OWASP ASVS standard
mackowski/secureCodeBox
SecureCodeBox - continuous secure delivery out of the box
mackowski/test-actions
mackowski/unity-ssdlc
A public version of Unity's internal SSDLC. Meant to provide an example framework, not just to share with others, but to also take contributions and continue to improve and evolve.
mackowski/www-community
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
mackowski/www-project-cheat-sheets
OWASP Foundation Web Respository
mackowski/zero-trust-architecture
Principles to help you design and deploy a zero trust architecture