Pinned Repositories
Defending-DevOps
Lab Material for the Two-Day Defending Modern DevOps Environments Course
DevSecOps-blog
DevOpsSec
docker-security-workshop
Docker Security Workshop
kubernetes-goat
Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster.
kubernetes-training
security-pins
Pin designs for security related items
security-pins-pdf
Generate a security pins template
securityTesting
xss-angular
An insecure application
wurstbrot's Repositories
wurstbrot/security-pins
Pin designs for security related items
wurstbrot/kubernetes-training
wurstbrot/packj
Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
wurstbrot/threat-modeling-training
Segment's Threat Modeling training for our engineers
wurstbrot/client-go
Go client library for OWASP Dependency-Track
wurstbrot/csaf
OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secondary artifacts like meeting minutes and productivity code
wurstbrot/CVE-2017-7525-Jackson-Deserialization-Lab
Insecure Java Deserialization Lab
wurstbrot/dep-scan
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
wurstbrot/django-DefectDojo
DefectDojo is an open-source application vulnerability correlation and security orchestration tool.
wurstbrot/image-metadata-collector
wurstbrot/it-security-lecture
University lecture on "IT Security" as Open Educational Resources material
wurstbrot/kstg
Kubernetes Security Testing Guide
wurstbrot/kustomize-training
wurstbrot/multi-juicer
Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
wurstbrot/oshp-validator
Venom tests suite to validate an HTTP security response headers configuration against OSHP recommendation.
wurstbrot/oss-website
The Open Security Summit is focused on the collaboration between, Developers and Application Security
wurstbrot/owasp.github.io
DRAFT OWASP Foundation main site repository
wurstbrot/purify
All-in-one tool for managing vulnerability reports from AppSec pipelines
wurstbrot/PyGithub
Typed interactions with the GitHub API v3
wurstbrot/renovate
Home of the Renovate CLI: Cross-platform Dependency Automation by Mend.io
wurstbrot/renovate-test
renovate test
wurstbrot/sbom-to-libyear
Provide an SBOM and generate libyear
wurstbrot/secvisogram
Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
wurstbrot/snakeyaml_cve_poc
SnakeYAML-CVE-2022-1471-POC
wurstbrot/ssrf
Server Side Request Forgery Sample
wurstbrot/vulnerable-file-upload
This is a vulnerable file upload PHP application. Do not use it in production.
wurstbrot/website
The OWASP SAMM Website
wurstbrot/www-community
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
wurstbrot/www-project-proactive-controls
OWASP Foundation Web Respository
wurstbrot/www-project-threat-dragon
OWASP Foundation Threat Dragon Project Web Repository