boostsecurityio / poutine
boostsecurityio/poutine
☆266Updated last week
Alternatives and similar repositories for poutine:
Users that are interested in poutine are comparing it to the libraries listed below
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆95Updated 2 weeks ago
- ☆63Updated 3 months ago
- A tool for preventing the installation of malicious PyPI and npm packages☆134Updated this week
- ☆177Updated last week
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆148Updated 5 months ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆277Updated 2 months ago
- Documenting your Threat Models with HCL☆426Updated 7 months ago
- Gram is Klarna's own threat model diagramming tool☆319Updated this week
- A full insecure kubernetes application for testing security tools☆70Updated this week
- boostsecurityio/lotp☆123Updated 2 weeks ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆143Updated 10 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆93Updated last week
- Enrich SBOMs with data from third party services☆168Updated 3 weeks ago
- cloudgrep is grep for cloud storage☆327Updated 2 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆171Updated 5 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆194Updated this week
- Validate the isolation posture of your container environment.☆272Updated this week
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆208Updated 2 weeks ago
- Generate datasets of cloud audit logs for common attacks☆213Updated 8 months ago
- An open-source collection of API key rotation tutorials.☆70Updated last month
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆166Updated this week
- The security workflow engine!☆110Updated this week
- A tool to uncover undocumented APIs from the AWS Console.☆101Updated 5 months ago
- AWS honey token manager☆87Updated 8 months ago
- A tool to check the security settings of Github Organizations.☆71Updated last year
- Generate a score for your sbom to understand if it will actually be useful.☆229Updated 8 months ago
- Protect against subdomain takeover☆92Updated 11 months ago
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆154Updated 7 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated last year
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year