quine
Technical Lead Manager, AppSec at Cruise | Wearer of several infosec name tags and hairnets over the last 20+ years
Fuquay-Varina, NC
quine's Stars
aquasecurity/trivy
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
renovatebot/renovate
Home of the Renovate CLI: Cross-platform Dependency Automation by Mend.io
google/tink
Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.
bloomberg/memray
Memray is a memory profiler for Python
fullstorydev/grpcurl
Like cURL, but for gRPC: Command-line tool for interacting with gRPC servers
maxgoedjen/secretive
Store SSH keys in the Secure Enclave
alufers/mitmproxy2swagger
Automagically reverse-engineer REST APIs via capturing traffic
projectdiscovery/naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
google/wuffs
Wrangling Untrusted File Formats Safely
cilium/tetragon
eBPF-based Security Observability and Runtime Enforcement
Orange-Cyberdefense/arsenal
Arsenal is just a quick inventory and launcher for hacking programs
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
dgiese/dustcloud
Xiaomi Smart Home Device Reverse Engineering and Hacking
hahwul/DevSecOps
♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎
Edgenesis/shifu
Kubernetes-native IoT gateway
ossf/allstar
GitHub App to set and enforce security policies
0xdea/semgrep-rules
A collection of my Semgrep rules to facilitate vulnerability research.
Accenture/VulFi
IDA Pro plugin for query based searching within the binary useful mainly for vulnerability research.
gittuf/gittuf
A security layer for Git repositories
ossf/fuzz-introspector
Fuzz Introspector -- introspect, extend and optimise fuzzers
crashappsec/chalk
Chalk allows you to follow code from development, through builds and into production.
cedowens/SwiftBelt
A macOS enumeration tool inspired by harmjoy's Windows-based Seatbelt enumeration tool. Author: Cedric Owens
ossf/malicious-packages
A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerability (OSV) format.
in-toto/attestation
in-toto Attestation Framework
r0binak/MTKPI
🧰 Multi Tool Kubernetes Pentest Image
ossf/wg-supply-chain-integrity
Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the code they maintain, produce and use.
RefactorSecurity/vscode-security-notes
Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
doyensec/PESD-Exporter-Extension
PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
crashappsec/con4m
Configuration Language for Mortals
crashappsec/nimutils
General purpose utility code for any nim projects