GoSecure/security-cheat-sheet external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

GoSecure/security-cheat-sheet

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/GoSecure/security-cheat-sheet)

Close

GoSecure / security-cheat-sheetView on GitHubMore

• External links
• Readme badge

Minimalist cheat sheet for developpers to write secure code

☆54Jul 17, 2020Updated 5 years ago

Alternatives and similar repositories for security-cheat-sheet

Users that are interested in security-cheat-sheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• h3xstream / burp-image-metadata

  View on GitHub
  Burp and ZAP plugin that display image metadata (JPEG Exif or PNG text chunk).
  ☆15Apr 15, 2023Updated 3 years ago
• GoSecure / goinsecure-deserialization

  View on GitHub
  Accompanying material needed for the workshop
  ☆11Jun 14, 2023Updated 2 years ago
• Kloudle / pentesting-ibm-cloud

  View on GitHub
  ☆20Jan 12, 2022Updated 4 years ago
• GoSecure / presentations

  View on GitHub
  Material from presentations done by GoSecure researchers
  ☆34Oct 10, 2023Updated 2 years ago
• GoSecure / 44con-code-review-workshop

  View on GitHub
  References, tools and sample payloads
  ☆11Sep 16, 2016Updated 9 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• h3xstream / waf-workshop

  View on GitHub
  ☆16Oct 30, 2022Updated 3 years ago
• dotnet-security-guard / fxcop-security-guard

  View on GitHub
  FxCop rules that aim to help security audit on .NET applications.
  ☆14Nov 10, 2017Updated 8 years ago
• PoorBillionaire / Windows-Prefetch-Carver

  View on GitHub
  Carve Windows Prefetch files from arbitrary binary data
  ☆16Jun 11, 2017Updated 8 years ago
• find-sec-bugs / find-sec-bugs-demos

  View on GitHub
  Repository to showcase various configuration recipes with various technologies
  ☆36Dec 16, 2022Updated 3 years ago
• PortSwigger / psycho-path

  View on GitHub
  psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…
  ☆19Jun 28, 2018Updated 7 years ago
• GoSecure / break-fast-serial

  View on GitHub
  A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
  ☆55Mar 27, 2017Updated 9 years ago
• tevora-threat / splunk_pentest_app

  View on GitHub
  splunk_pentest_app
  ☆50Apr 22, 2016Updated 10 years ago
• eyalitki / presentations

  View on GitHub
  Collection of my slide decks, conference videos and research white papers
  ☆27Sep 23, 2025Updated 7 months ago
• Leoid / NonPublishedExploits

  View on GitHub
  A Collection of Proof of Concepts for non-published Web Exploits and Common CVEs
  ☆10Nov 29, 2020Updated 5 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• al14s / rawr

  View on GitHub
  Rapid Assessment of Web Resources
  ☆19Nov 11, 2016Updated 9 years ago
• ZephrFish / CVE-2021-28480_HoneyPoC3

  View on GitHub
  DO NOT RUN THIS.
  ☆10Jul 15, 2021Updated 4 years ago
• GoSecure / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆47Mar 22, 2017Updated 9 years ago
• MaherAzzouzi / VMExploitation

  View on GitHub
  VM escape (QEMU, VirtualBox, VMware)
  ☆17Mar 21, 2022Updated 4 years ago
• Kloudle / attacking-and-auditing-docker-containers-and-kubernetes-clusters-training

  View on GitHub
  ☆12Mar 31, 2021Updated 5 years ago
• avicoder / WriteUp

  View on GitHub
  Collection of Some Good research Documentation
  ☆27Dec 10, 2017Updated 8 years ago
• attacker-codeninja / 100DaysToLearnandImprove

  View on GitHub
  My notes of Day1 Day2 will be posted here as journey
  ☆17Jan 6, 2021Updated 5 years ago
• ctf-x / ctfx-problems-2016

  View on GitHub
  CTF(x) 2016 problem statements, files, and writeups
  ☆16Jan 30, 2019Updated 7 years ago
• RUB-NDS / PrOfESSOS

  View on GitHub
  PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach …
  ☆29Jan 8, 2023Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• ZephrFish / XSS

  View on GitHub
  A collection of XSS Attack vectors
  ☆10Apr 26, 2025Updated last year
• h4x0r101 / Damn-Vulnerable-Source-Code

  View on GitHub
  The aim of the project is to develop intentionally vulnerable source code in various languages.
  ☆16Mar 3, 2026Updated last month
• zteeed / CTFd-discord

  View on GitHub
  Discord bot to display events and information about a CTFd instance (https://ctfd.io/)
  ☆11Jul 9, 2024Updated last year
• needmorecowbell / jumper

  View on GitHub
  Automated Reverse TCP tunneling using a digitalocean instance and aploium's shootback repo (https://github.com/aploium/shootback)
  ☆13Oct 30, 2018Updated 7 years ago
• guptabless / unclaim-s3-finder

  View on GitHub
  ☆11Jul 28, 2020Updated 5 years ago
• righettod / log4shell-analysis

  View on GitHub
  Contains all my research and content produced regarding the log4shell vulnerability
  ☆31Jan 22, 2022Updated 4 years ago
• darkoperator / Presentations

  View on GitHub
  Presentation Slides
  ☆26Jun 7, 2019Updated 6 years ago
• GoSecure / csp-auditor

  View on GitHub
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆142Apr 29, 2020Updated 6 years ago
• Cymmetria / CymmetriaResearch

  View on GitHub
  ☆29Nov 10, 2016Updated 9 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• skepticfx / damnvulnerable.me

  View on GitHub
  A deliberately vulnerable modern day app with lots of DOM related bugs
  ☆35May 19, 2019Updated 6 years ago
• infosecn1nja / atomic-red-team

  View on GitHub
  Small and highly portable detection tests.
  ☆13Apr 13, 2018Updated 8 years ago
• goyalvartul / Cloud-Security-Encyclopedia

  View on GitHub
  ☆11Jan 24, 2023Updated 3 years ago
• HBOCodeLabs / gimme-aws-creds

  View on GitHub
  A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials
  ☆10Jun 30, 2021Updated 4 years ago
• phin3has / docker-pentest-lists

  View on GitHub
  Docker Pentest Lists are collection of Dockerfiles or Links to Dockerfiles for containers used in Penetration Tests
  ☆21May 1, 2017Updated 8 years ago
• farsightsec / dnstable

  View on GitHub
  encoding format, library, and utilities for passive DNS data
  ☆27Mar 29, 2024Updated 2 years ago
• FortyNorthSecurity / Presentations

  View on GitHub
  Any presentation we've given at FortyNorth Security
  ☆33Sep 27, 2021Updated 4 years ago