Addepar / RedFlag
RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and add reviewers. RedFlag's flexible configuration makes it valuable for any team.
☆144Updated last month
Alternatives and similar repositories for RedFlag:
Users that are interested in RedFlag are comparing it to the libraries listed below
- Cloud Commotion intends to cause chaos to simulate security incidents☆141Updated 7 months ago
- boostsecurityio/poutine☆243Updated last week
- cloudgrep is grep for cloud storage☆321Updated 3 weeks ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆59Updated last year
- AWS honey token manager☆86Updated 5 months ago
- ☆161Updated 4 months ago
- Generate datasets of cloud audit logs for common attacks☆192Updated 5 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆132Updated 2 weeks ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆105Updated 3 months ago
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆164Updated 3 months ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆161Updated 8 months ago
- Gram is Klarna's own threat model diagramming tool☆291Updated this week
- ☆360Updated 9 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆94Updated last month
- A full insecure kubernetes application for testing security tools☆64Updated last week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆154Updated 10 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆121Updated last month
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆222Updated 4 months ago
- Halberd : Multi-Cloud Attack Platform☆239Updated this week
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆71Updated 10 months ago
- AWS Attack Path Management Tool - Walking on the Moon☆233Updated last month
- This repo contains IOC, malware and malware analysis associated with Public cloud☆246Updated 2 months ago
- ☆46Updated 2 months ago
- ☆254Updated last month
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆47Updated 2 months ago
- A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of …☆184Updated 3 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆88Updated last year
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆266Updated last month
- FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).☆179Updated 6 months ago
- find dangling domains in a multi cloud environment☆136Updated last week