markaltmann's Stars
z0ph/aa-policy-validator
Validate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation
usebruno/bruno
Opensource IDE For Exploring and Testing Api's (lightweight alternative to postman/insomnia)
OWASP/threat-dragon
An open source threat modeling tool from OWASP
zaproxy/community-scripts
A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
jmprieur/app-provisonning-tool
Tool to provision Microsoft identity platform applications and sync it with code configuration
giuliocalzolari/aad-aws-login
Azure AD Login to AWS with SAML
Checkmarx/capital
A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.
hashicorp/terraform-cdk
Define infrastructure resources using programming constructs and provision them using HashiCorp Terraform
OWASP/www-project-pytm
OWASP Foundation Web Respository
nocodb/nocodb
🔥 🔥 🔥 Open Source Airtable Alternative
mingrammer/diagrams
:art: Diagram as Code for prototyping cloud system architectures
microsoft/component-detection
Scans your project to determine what components you use
trustoncloud/threatmodel-for-aws-s3
ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
vouch/vouch-proxy
an SSO and OAuth / OIDC login solution for Nginx using the auth_request module
devmatic-it/taralizer
Taralizer - the Threat and Risk Analyzer
tenable/terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
The-School-of-Automation/automation-book-scripts
📄 Scripts accompanying the Book, "Automating Social Media Interactions"
The-School-of-Automation/youtube-lectures-scripts
📺 Automation Scripts created in the YouTube videos of the School of automation Channel
liamg/traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
MircoBabin/KeePassCommander
A KeePass plugin to provide a communication channel for PHP scripts, Windows CMD/BAT/PowerShell scripts, Python, C#, git, etc. to query the KeePass password store without requiring configuration or passwords.
jorgebastida/awslogs
AWS CloudWatch logs for Humans™
rbuchberger/jekyll_picture_tag
Easy responsive images for Jekyll.
LBBO/netflix-migrate
A command-line tool to migrate data to and from Netflix profiles
microsoft/restler-fuzzer
RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services.
salesforce/cloudsplaining
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
FreifunkBremen/yanic
Yet another node info collector - for respondd to be used with meshviewer to Grafana (with influxdb or graphite)
freifunk-mwu/yanic
Yet another node info collector - for respondd to be used with meshviewer to Grafana (with influxdb or graphite)
markaltmann/markaltmann.github.io
my website
rebuy-de/aws-nuke
Nuke a whole AWS account and delete all its resources.
rdmueller/asciidoc2confluence
a groovy script to export an HTML file generated by asciidoc to several confluence pages