Alternatives and similar repositories for www-project-top-10-infrastructure-security-risks

Users that are interested in www-project-top-10-infrastructure-security-risks are comparing it to the libraries listed below

• nccgroup / ccs
  ☆111Updated 2 years ago
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆108Updated 8 months ago
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated last year
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆64Updated last month
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆104Updated last year
• OWASP / owasp-istg
  The IoT Security Testing Guide (ISTG) provides a comprehensive methodology for penetration tests in the IoT field, offering flexibility t…
  ☆102Updated 9 months ago
• OWASP / wrongsecrets-ctf-party
  Run Capture the Flags and Security Trainings with OWASP WrongSecrets
  ☆49Updated this week
• OWASP / www-project-nightingale
  OWASP Foundation Web Respository
  ☆9Updated 2 weeks ago
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆72Updated last year
• Permiso-io-tools / YetiHunter
  Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the …
  ☆71Updated last year
• piercing-index / cloud-vulnerabilities
  ☆41Updated 4 months ago
• yahoo / SubdomainSleuth
  Scanner to identify dangling DNS records and subdomain takeovers
  ☆44Updated 7 months ago
• dagheyman / awesome-product-security
  📚A curated list of product security resources.
  ☆20Updated last month
• padok-team / cognito-scanner
  A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation
  ☆107Updated last year
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆47Updated last year
• tenable / hidden-services-revealer
  ☆36Updated 11 months ago
• Kloudle / attacking-and-auditing-docker-containers-and-kubernetes-clusters-training
  ☆12Updated 4 years ago
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated 3 months ago
• BishopFox / llm-testing-findings
  LLM Testing Findings Templates
  ☆72Updated last year
• ayushpriya10 / IMDShift
  ☆56Updated 2 years ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆46Updated 2 years ago
• nccgroup / cowcloud
  ☆57Updated 2 years ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• FogSecurity / yes3-scanner
  YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection
  ☆81Updated last month
• messypoutine / gravy-overflow
  A GitHub Actions Supply Chain CTF / Goat
  ☆21Updated this week
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆138Updated last year
• csdev / ezghsa
  EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.
  ☆35Updated 6 months ago
• ReversecLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆142Updated 6 months ago
• r3volved / CVEAggregate
  Build a CVE library with aggregated CISA, EPSS and CVSS data
  ☆27Updated last year
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Updated last year