boostsecurityio / poutine
boostsecurityio/poutine
☆262Updated this week
Alternatives and similar repositories for poutine:
Users that are interested in poutine are comparing it to the libraries listed below
- ☆163Updated 6 months ago
- Validate the isolation posture of your container environment.☆268Updated this week
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆276Updated 2 months ago
- A tool for preventing the installation of malicious PyPI and npm packages☆133Updated this week
- ☆60Updated 2 months ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆148Updated 4 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆84Updated 3 weeks ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆190Updated this week
- boostsecurityio/lotp☆119Updated 3 weeks ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated 9 months ago
- Documenting your Threat Models with HCL☆425Updated 7 months ago
- Gram is Klarna's own threat model diagramming tool☆319Updated 3 weeks ago
- Enrich SBOMs with data from third party services☆164Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆227Updated 7 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆170Updated 4 months ago
- A full insecure kubernetes application for testing security tools☆70Updated last week
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆200Updated 2 months ago
- A tool to check the security settings of Github Organizations.☆71Updated last year
- An open-source collection of API key rotation tutorials.☆69Updated 2 weeks ago
- A tool to uncover undocumented APIs from the AWS Console.☆99Updated 4 months ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆516Updated last month
- cloudgrep is grep for cloud storage☆324Updated last month
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆169Updated 2 months ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆274Updated 7 months ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆799Updated last week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆162Updated this week
- AWS honey token manager☆87Updated 8 months ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆298Updated this week
- GitGuardian Canary Tokens☆133Updated last year
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆149Updated last month