ManicodeSecurity / Defending-DevOps
Lab Material for the Two-Day Defending Modern DevOps Environments Course
☆125Updated 5 years ago
Alternatives and similar repositories for Defending-DevOps:
Users that are interested in Defending-DevOps are comparing it to the libraries listed below
- k8s audit repo☆227Updated 5 years ago
- Security scanning & static analysis tool☆94Updated 6 months ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆180Updated 6 years ago
- A deliberately vulnerable Kubernetes cluster☆124Updated last year
- ☆74Updated 4 years ago
- Attacking and Defending Kubernetes Clusters: A Guided Tour☆206Updated 3 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- A very vulnerable serverless application in AWS Lambda☆95Updated 5 years ago
- This repo gives an overview of some GCP metadata API attack and defend patterns☆76Updated 5 years ago
- Automated GKE Kubelet Impersonation and Cluster Secret Stealer via kube-env☆103Updated 5 years ago
- OWASP Kubernetes Security Testing Guide☆37Updated 7 months ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- AppSecPipeline Specification for DevOps automation.☆40Updated 2 years ago
- Security aspects of AWS products for the Security Specialist certification☆211Updated 2 years ago
- for AWS Security material☆247Updated 3 years ago
- ☆49Updated 4 years ago
- Kubernetes Easter CTF☆58Updated 4 years ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- ☆63Updated 2 years ago
- Intentionally Vulnerable Serverless Functions to understand the specifics of Serverless Security Vulnerabilities☆135Updated 2 years ago
- Google Cloud Platform Security Tool☆234Updated 5 years ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 3 years ago
- ☆32Updated last year
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- ☆32Updated 4 years ago
- Kubernetes Pwnage for all☆57Updated 4 years ago
- Links and resources for the O'Reilly Kubernetes Security book☆98Updated 4 years ago
- materials we hand out☆143Updated 3 weeks ago
- Pentester-focused Docker registry tool to enumerate and pull images☆108Updated 5 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago