Pinned Repositories
AppSecToolbox-site
The markup, code and templates that make up the AppSec Toolbox site
AppSecToolbox-tools
Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly
jerry-curl
Wrapper for curl allowing easy inclusion of command line options from a configuration file so your curl commands can go on a serious diet
owasp-wte
Home of the developement for OWASP WTE - the Web Testing Environment, a collection of pre-packaged Linux AppSec tools, apps and documentation used to create pre-configured VMs or installed ala carte in the Linux of your choice..
random-docs
A place where I keep hany info on installing/configuring stuff and other useful information.
tf-appreport
A command-line tool to generate a draft AppSec status report based on data pulled from ThreadFix's REST API.
tfCheckmarxUpload
A program to upload Checkmarx static analysis results (xml) files to ThreadFix. TFCheckmarxUpload is used to automate submission of Checkmarx results to ThreadfFix.
tfclient
Go library to work with the ThreadFix REST API. ThreadFix can be found at https://github.com/denimgroup/threadfix
tfmetrics
An example of using tfclient to gather metrics from ThreadFix's REST API
ut-cs-361
Course material for University of Texas, Computer Science Department course CS 361 - Introduction to Computer Security
mtesauro's Repositories
mtesauro/ut-cs-361
Course material for University of Texas, Computer Science Department course CS 361 - Introduction to Computer Security
mtesauro/tfCheckmarxUpload
A program to upload Checkmarx static analysis results (xml) files to ThreadFix. TFCheckmarxUpload is used to automate submission of Checkmarx results to ThreadfFix.
mtesauro/tfmetrics
An example of using tfclient to gather metrics from ThreadFix's REST API
mtesauro/tf-appreport
A command-line tool to generate a draft AppSec status report based on data pulled from ThreadFix's REST API.
mtesauro/legacy-owasp-wte
Direct import of the legacy source of OWASP WTE from Google Code for reference purposes only.
mtesauro/postern
An agent allowing secure access to encryption materials from the Barbican key management API.
mtesauro/postern-poc
Proof of concept postern agent
mtesauro/bag-of-holding
An application security utility to assist in the organization and prioritization of software security activities.
mtesauro/gauntlt-demo
this is a demo set of attacks that can be used to get started with gauntlt
mtesauro/parse-tools
Various utilities to parse security scanner results/exports into ofhter, more consumable formats.
mtesauro/Social-Data
Data from OWASP's Wiki, mailman, etc...