mattgurr's Stars
valeriansaliou/sonic
🦔 Fast, lightweight & schema-less search backend. An alternative to Elasticsearch that runs on a few MBs of RAM.
prowler-cloud/prowler
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
kubescape/kubescape
Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
redcanaryco/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
duo-labs/cloudmapper
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
CTFd/CTFd
CTFs as you need them
aws/aws-eks-best-practices
A best practices guide for day 2 operations, including operational excellence, security, reliability, performance efficiency, and cost optimization.
GrrrDog/weird_proxies
Reverse proxies cheatsheet
dfir-iris/iris-web
Collaborative Incident Response platform
selimsef/dfdc_deepfake_challenge
A prize winning solution for DFDC challenge
ramimac/aws-customer-security-incidents
A repository of breaches of AWS customers
awslabs/aws-security-assessment-solution
An AWS tool to help you create a point in time assessment of your AWS account using Prowler.
awslabs/threat-composer
A simple threat modeling tool to help humans to reduce time-to-value when threat modeling
aws-solutions/automated-security-response-on-aws
Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a library of automated playbooks. The solution makes it easier for AWS Security Hub customers to resolve common security findings and to improve their security posture in AWS.
guardicore/labs_campaigns
SummitRoute/aws_exposable_resources
Resource types that can be publicly exposed on AWS
spacesiren/spacesiren
A honey token manager and alert system for AWS.
mxm0z/awesome-sec-s3
A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets
awslabs/aws-security-analytics-bootstrap
AWS Security Analytics Bootstrap enables customers to perform security investigations on AWS service logs by providing an Amazon Athena analysis environment that's quick to deploy, ready to use, and easy to maintain.
AustralianCyberSecurityCentre/windows_event_logging
Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technical Guidance for Windows Event Logging.
RealityNet/attack-coverage
an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques
aslitsecurity/CVE-2021-40444_builders
This repo contain builders of cab file, html file, and docx file for CVE-2021-40444 exploit
elastic/SWAT
Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK framework.
goldfiglabs/rpCheckup
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
CrowdStrike/Cloud-AWS
A collection of projects supporting AWS Integration
amrandazz/attack-guardduty-navigator
A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
lawfareblog/hacking-cybersecurity
Hacking & Cybersecurity class materials - Scott J. Shapiro & Sean O'Brien
Accenture/AARO-Bugs
Vulnerabilities, exploits, and PoCs
truekonrads/danglingcname
A simple tool to find dangling CNAMEs
scottleedavis/cognitive-bias-codex
A d3 chart that groups and drills down the 200+ biases from cognitive-bias-cheat-sheet