JosephTLucas / lintML
A security-first linter for code that shouldn't need linting
☆14Updated last year
Related projects: ⓘ
- An interactive CLI application for interacting with authenticated Jupyter instances.☆49Updated 6 months ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆42Updated 8 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆56Updated last year
- A JupyterLab extension to evaluate the security of your Jupyter environment☆36Updated last year
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆60Updated 3 months ago
- Clean accounts over permissions in GCP infra at scale☆70Updated last year
- Tool for obfuscating and deobfuscating data.☆60Updated 6 months ago
- Secure Jupyter Notebooks and Experimentation Environment☆52Updated last month
- HashiCorp-relevant rules for the Semgrep code analysis tool☆37Updated 11 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆55Updated last year
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆56Updated 6 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆38Updated 9 months ago
- WAF bypass PoC☆43Updated 11 months ago
- ☆39Updated 3 months ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆93Updated 2 months ago
- Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the …☆57Updated 3 months ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆110Updated last year
- ☆33Updated 2 months ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆68Updated 7 months ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆127Updated last year
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆65Updated last year
- An AWS metadata enumeration tool by Plerion☆72Updated 7 months ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆27Updated 6 months ago
- boostsecurityio/lotp☆97Updated 5 months ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆29Updated 5 months ago
- ☆58Updated last year
- using ML models for red teaming☆39Updated last year
- A GitHub Actions Supply Chain CTF / Goat☆16Updated 3 months ago
- ☆15Updated 2 months ago
- A small library to alter AWS API requests; Used for fuzzing research☆21Updated 10 months ago