Addepar / RedFlag
RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and add reviewers. RedFlag's flexible configuration makes it valuable for any team.
☆146Updated 2 months ago
Alternatives and similar repositories for RedFlag:
Users that are interested in RedFlag are comparing it to the libraries listed below
- Cloud Commotion intends to cause chaos to simulate security incidents☆143Updated 8 months ago
- Generate datasets of cloud audit logs for common attacks☆199Updated 6 months ago
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆164Updated 4 months ago
- ☆163Updated 5 months ago
- AWS honey token manager☆87Updated 6 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆59Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆137Updated last month
- ☆174Updated 2 months ago
- Gram is Klarna's own threat model diagramming tool☆319Updated last week
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆224Updated 5 months ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆161Updated 9 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆95Updated 3 months ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆106Updated 4 months ago
- A full insecure kubernetes application for testing security tools☆66Updated this week
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆47Updated 3 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆140Updated this week
- boostsecurityio/poutine☆252Updated this week
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆72Updated 11 months ago
- ☆359Updated 10 months ago
- ☆47Updated 3 months ago
- One Conference 2024☆105Updated 4 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆248Updated 3 months ago
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆100Updated last year
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆156Updated 11 months ago
- AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.☆206Updated 5 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆216Updated last month
- Halberd : Multi-Cloud Attack Platform☆247Updated 2 weeks ago
- A multi-vault secret injection tool for safely injecting secrets into app environment☆116Updated 2 weeks ago
- A tool for preventing the installation of malicious PyPI and npm packages☆124Updated this week
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆91Updated last year