mikerod-sd

mikerod-sd's Stars

• trufflesecurity/trufflehog

  Find, verify, and analyze leaked credentials

  Language:Go15.8k1696381.6k

• onceupon/Bash-Oneliner

  A collection of handy Bash One-Liners and terminal tricks for data processing and Linux system maintenance.

  10.2k10813616

• google/grr

  GRR Rapid Response: remote live forensics for incident response

  Language:Python4.8k315677764

• hexops/dockerfile

  Dockerfile best-practices for writing production-worthy Docker images.

  Language:Dockerfile4k729158

• microsoft/kiota

  OpenAPI based HTTP Client code generator

  Language:C#2.9k431.3k195

• 6mile/DevSecOps-Playbook

  This is a step-by-step guide to implementing a DevSecOps program for any size organization

  1.9k784316

• hahwul/DevSecOps

  ♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎

  Language:Go1.7k522353

• ossf/allstar

  GitHub App to set and enforce security policies

  Language:Go1.2k32164123

• OWASP/wrongsecrets

  Vulnerable app with examples showing how to not use secrets

  Language:Java1.2k18235340

• akto-api-security/akto

  Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure

  Language:Java99317150193

• aquasecurity/chain-bench

  An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.

  Language:Go717114462

• OWASP/www-project-kubernetes-top-ten

  OWASP Foundation Web Respository

  Language:HTML562361086

• center-for-threat-informed-defense/attack-flow

  Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows.

  Language:TypeScript544952885

• google/cloud-forensics-utils

  Python library to carry out DFIR analysis on the Cloud

  Language:Python4592017688

• awslabs/aws-automated-incident-response-and-forensics

  371151256

• secengjeff/awskillswitch

  Lambda function that streamlines containment of an AWS account compromise

  Language:Go3164022

• gsmith257-cyber/GraphCrawler

  GraphQL automated security testing toolkit

  Language:Python2985723

• awslabs/terraform-iam-policy-validator

  A command line tool that validates AWS IAM Policies in a Terraform template against AWS IAM best practices

  Language:Python29651123

• atsign-foundation/sshnoports

  SSH to any device with no ports open

  Language:Dart2481214613

• awslabs/assisted-log-enabler-for-aws

  Assisted Log Enabler for AWS - Find AWS resources that are not logging, and turn them on.

  Language:Python223101928

• aws-samples/service-control-policy-examples

  Example AWS Service control policies to get started or mature your usage of AWS SCPs.

  22113028

• koenbuyens/oauth-2.0-security-cheat-sheet

  oauth security guidelines

  2187136

• mikeprivette/awesome-sec-challenges

  A curated list of Awesome Security Challenges.

  1683118

• iriusrisk/OpenThreatModel

  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.

  165161113

• 9rnt/poro

  Scan publicly accessible assets on your AWS cloud environment

  Language:Python1393317

• OWASP/owasp-summit-2017

  Content for OWASP Summit 2017 site

  Language:CSS12631168219

• aquia-inc/scpkit

  SCP management tool

  Language:Python1231269

• eclipse/jbom

  Language:Java11111135

• nccgroup/ccs

  Language:Python109509

• turbot/steampipe-mod-zoom-compliance

  Run individual configuration, compliance and security controls or full compliance benchmarks for CIS for Zoom using Powerpipe and Steampipe.

  Language:HCL661636