aws / http-desync-guardianLinks
Analyze HTTP requests to minimize risks of HTTP Desync attacks (precursor for HTTP request smuggling/splitting).
☆269Updated 4 years ago
Alternatives and similar repositories for http-desync-guardian
Users that are interested in http-desync-guardian are comparing it to the libraries listed below
Sorting:
- A command line interface for Amazon EBS snapshots☆240Updated last week
- Rust libraries and tools for using and generating TUF repositories☆214Updated this week
- DEPRECATED - web security checklist for Firefox Services☆76Updated 4 years ago
- k8s audit repo☆229Updated 6 years ago
- No need for IAM users when we have Yubikeys☆159Updated 3 years ago
- Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).☆143Updated 3 months ago
- AWS Metadata Proxy for protection against SSRF☆68Updated 5 years ago
- OWASP ServerlessGoat: a serverless application demonstrating common serverless security flaws☆327Updated last year
- Resource types that can be publicly exposed on AWS☆328Updated 3 years ago
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 3 years ago
- A production-friendly malware scanner for your AWS cloud☆200Updated 4 years ago
- ☆138Updated 5 months ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 6 years ago
- Unit testing framework for test driven security of AWS, GCP, Heroku and more.☆107Updated last year
- Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS)☆442Updated 2 years ago
- for AWS Security material☆249Updated 3 years ago
- A crowdsourced AWS IAM permissions reference.☆99Updated 2 weeks ago
- Research on the enumeration of IAM permissions without logging to CloudTrail☆61Updated 4 years ago
- Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)☆52Updated 2 years ago
- ☆83Updated 5 years ago
- List of vendors that do not allow IMDSv2 enforcement☆143Updated last year
- OWASP Serverless Top 10☆218Updated 4 years ago
- ☆220Updated 2 months ago
- Tools for fingerprinting and exploiting Amazon cloud infrastructures☆478Updated 2 years ago
- Security aspects of AWS products for the Security Specialist certification☆212Updated 3 years ago
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…☆225Updated 2 years ago
- Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.☆44Updated 3 weeks ago
- Security scanning & static analysis tool☆94Updated 10 months ago
- Documenting your Threat Models with HCL☆433Updated 2 months ago
- The ConsoleMe CLI utility☆332Updated last year