ZupIT / horusec-platform

Related projects ⓘ

Alternatives and complementary repositories for horusec-platform

• krol3 / kubernetes-security-checklist
  Awesome resources about Security in Kubernetes
  ☆40Updated last year
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆43Updated last year
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆53Updated 2 months ago
• projectdiscovery / nvd
  Fast, simple library in Go to fetch CVEs from the National Vulnerability Database feeds
  ☆25Updated last year
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆59Updated 8 months ago
• apiiro / combobulator
  Dependency Combobulator
  ☆88Updated 10 months ago
• redhuntlabs / KubeStalk
  KubeStalk discovers Kubernetes and related infrastructure based attack surface from a black-box perspective.
  ☆167Updated last year
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆74Updated 8 months ago
• hysnsec / awesome-sca
  A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.
  ☆98Updated 5 months ago
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆45Updated 2 months ago
• raesene / k8s_ssrf_portscanner
  ☆31Updated last year
• jp-gouin / multi-cluster-supply-chain
  ☆15Updated 4 months ago
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆36Updated 3 years ago
• primait / nuvola
  ☆137Updated 2 weeks ago
• OWASP / www-project-kubernetes-security-testing-guide
  OWASP Kubernetes Security Testing Guide
  ☆37Updated 2 months ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆46Updated last year
• doyensec / PoiEx
  🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends
  ☆71Updated 9 months ago
• binareio / FastCVE
  FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)
  ☆39Updated 3 months ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆98Updated 9 months ago
• smithy-security / smithy
  The security workflow engine!
  ☆73Updated this week
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆36Updated last year
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated last year
• ZupIT / horusec-vscode-plugin
  Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command. Now you can usage e…
  ☆17Updated 2 weeks ago
• magnologan / awesome-sca
  A comprehensive list of software composition analysis tools.
  ☆127Updated 5 months ago
• projectdiscovery / openrisk
  openrisk is a tool that generates a risk score based on the results of a Nuclei scan.
  ☆166Updated 6 months ago
• vmnguyen / semgrep-rules
  My custom semgrep rules
  ☆18Updated 4 years ago
• riramar / h2csmuggler-proxy
  This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.
  ☆37Updated 2 years ago
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆87Updated last week
• hackinrio / Certifications-Guide
  ☆11Updated last year