OWASP / www-project-top-10-infrastructure-security-risks
OWASP Top 10 Infrastructure Security Risks
☆34Updated 3 months ago
Alternatives and similar repositories for www-project-top-10-infrastructure-security-risks:
Users that are interested in www-project-top-10-infrastructure-security-risks are comparing it to the libraries listed below
- Collection of Docker honeypot logs from 2021 - 2024☆36Updated 6 months ago
- Security tool against dependency typosquatting attacks☆39Updated this week
- A PoC to Simulate Ransomware Attack on AWS Environment☆31Updated 6 months ago
- ☆36Updated 3 months ago
- ☆35Updated 8 months ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆36Updated 7 months ago
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Updated 4 months ago
- Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the …☆68Updated 10 months ago
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆27Updated last year
- ☆12Updated 4 years ago
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆53Updated 3 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆106Updated 5 months ago
- A simple web app to get the latest EPSS data for a CVE ID☆10Updated 3 weeks ago
- InfoSec OpenAI Examples☆19Updated last year
- 📚A curated list of product security resources.☆19Updated 2 years ago
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆51Updated 5 months ago
- Semgrep-based Policy Controller for Kubernetes☆47Updated 3 weeks ago
- A catalog of services that can be publicly exposed within different cloud providers.☆14Updated 7 months ago
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆27Updated last month
- A fun POC that is built to understand AI security agents.☆30Updated 4 months ago
- Pentester-focused Docker registry tool to enumerate and pull images☆21Updated last week
- An LLM and OCR based Indicator of Compromise Extraction Tool☆33Updated 4 months ago
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆55Updated this week
- OWASP Amass Docker Compose for setting up a full instance of the infrastructure☆40Updated last month
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆28Updated 2 months ago
- A GitHub Actions Supply Chain CTF / Goat☆17Updated 2 months ago
- ☆41Updated 2 months ago
- ☆15Updated 2 weeks ago
- Tool for obfuscating and deobfuscating data.☆70Updated last year
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆100Updated last year