ManicodeSecurity / Defending-DevOpsLinks
Lab Material for the Two-Day Defending Modern DevOps Environments Course
☆125Updated 5 years ago
Alternatives and similar repositories for Defending-DevOps
Users that are interested in Defending-DevOps are comparing it to the libraries listed below
Sorting:
- A very vulnerable serverless application in AWS Lambda☆96Updated 5 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆179Updated 6 years ago
- k8s audit repo☆229Updated 5 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- Security aspects of AWS products for the Security Specialist certification☆211Updated 3 years ago
- ☆51Updated 5 years ago
- Kubernetes Easter CTF☆59Updated 5 years ago
- A deliberately vulnerable Kubernetes cluster☆126Updated last year
- Security scanning & static analysis tool☆94Updated 8 months ago
- Pentester-focused Docker registry tool to enumerate and pull images☆111Updated 5 years ago
- ☆66Updated 2 years ago
- ☆255Updated 10 months ago
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆103Updated 5 years ago
- Container Security Verification Standard☆58Updated 5 years ago
- OWASP Kubernetes Security Testing Guide☆38Updated 10 months ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…☆172Updated 6 years ago
- Monitors Github for leaked secrets☆200Updated 8 months ago
- Offensive Terraform module which copies publicly exposed EBS snapshot to us-east-1 region in attacker's AWS account and creates EBS volum…☆15Updated 4 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 5 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- AppSecPipeline Specification for DevOps automation.☆40Updated 2 years ago
- Google Cloud Platform Security Tool☆234Updated 5 years ago
- ☆57Updated 5 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆74Updated 3 years ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 4 years ago
- Attacking and Defending Kubernetes Clusters: A Guided Tour☆210Updated 3 years ago
- A tool for automatically gathering sensitive information from exposed Jenkins servers☆104Updated 2 years ago
- ☆28Updated 4 years ago
- Serverless Workshop☆16Updated 2 years ago