ManicodeSecurity / Defending-DevOps
Lab Material for the Two-Day Defending Modern DevOps Environments Course
☆125Updated 5 years ago
Alternatives and similar repositories for Defending-DevOps:
Users that are interested in Defending-DevOps are comparing it to the libraries listed below
- OWASP Cloud Security - Enabling conversations through threat and control stories☆179Updated 6 years ago
- ☆49Updated 4 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- k8s audit repo☆227Updated 5 years ago
- Security scanning & static analysis tool☆94Updated 5 months ago
- A very vulnerable serverless application in AWS Lambda☆94Updated 5 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- A deliberately vulnerable Kubernetes cluster☆124Updated last year
- AppSecPipeline Specification for DevOps automation.☆39Updated 2 years ago
- ☆63Updated 2 years ago
- Security aspects of AWS products for the Security Specialist certification☆208Updated 2 years ago
- Container Security Verification Standard☆58Updated 5 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated 2 years ago
- Attacking and Defending Kubernetes Clusters: A Guided Tour☆206Updated 3 years ago
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆102Updated 5 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆73Updated 3 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆278Updated this week
- Pentester-focused Docker registry tool to enumerate and pull images☆106Updated 5 years ago
- Google Cloud Platform Security Tool☆234Updated 5 years ago
- Dockerfile Security Checker using OPA Rego policies with Conftest☆59Updated 2 years ago
- ☆74Updated 4 years ago
- Kubernetes Easter CTF☆58Updated 4 years ago
- Container Security and Serverless Training☆13Updated 2 years ago
- OWASP Kubernetes Security Testing Guide☆37Updated 6 months ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆48Updated 8 years ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆60Updated 3 years ago
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…☆171Updated 6 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- Content for OWASP Summit 2017 site☆128Updated 4 years ago
- materials we hand out☆141Updated 2 weeks ago