bcdannyboy / EnterpriseSASTDASTProductLandscapeLinks
Analysis of the Enterprise SAST/DAST product landscape
☆37Updated last year
Alternatives and similar repositories for EnterpriseSASTDASTProductLandscape
Users that are interested in EnterpriseSASTDASTProductLandscape are comparing it to the libraries listed below
Sorting:
- A PoC to Simulate Ransomware Attack on AWS Environment☆32Updated 9 months ago
- An LLM and OCR based Indicator of Compromise Extraction Tool☆34Updated 8 months ago
- ☆116Updated 2 years ago
- Examine Chrome extensions for security issues☆85Updated 5 months ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated last year
- A Caldera plugin for the emulation of complete, realistic cyberattack chains.☆56Updated 5 months ago
- ☆50Updated last year
- Blogpost series showcasing interesting cloud - web app security bugs☆49Updated 2 years ago
- A tool for secrets management, encryption as a service, and privileged access management☆14Updated 3 weeks ago
- ☆33Updated 3 months ago
- RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…☆55Updated 6 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆42Updated last year
- A not-curated list of cloud hacking labs☆25Updated last year
- ☆57Updated 2 years ago
- Dont Gamble with Risk☆14Updated last year
- Collection of Docker honeypot logs from 2021 - 2024☆36Updated 10 months ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆47Updated 10 months ago
- Some of my rough notes for Docker threat detection☆47Updated last year
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes☆43Updated last year
- ☆17Updated last month
- A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.☆43Updated 10 months ago
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆40Updated 3 years ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated 2 years ago
- Pentester-focused Docker registry tool to enumerate and pull images☆24Updated last week
- Automated vulnerability discovery and annotation☆67Updated last year
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆134Updated 4 months ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆47Updated 11 months ago
- ☆18Updated last year
- ☆59Updated this week