bullfrogsec / bullfrog
Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
☆79Updated this week
Related projects ⓘ
Alternatives and complementary repositories for bullfrog
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆57Updated last year
- AWS honey token manager☆84Updated 3 months ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆59Updated 8 months ago
- ☆152Updated 2 months ago
- ☆42Updated 3 weeks ago
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆44Updated this week
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆30Updated last month
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆34Updated 2 months ago
- Compares and analyzes GCP IAM roles.☆76Updated 5 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- Generate datasets of cloud audit logs for common attacks☆184Updated 3 months ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆79Updated 2 years ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆37Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆104Updated 2 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆83Updated 2 months ago
- Validate the isolation posture of your container environment.☆152Updated this week
- boostsecurityio/poutine☆231Updated this week
- ☆24Updated 2 weeks ago
- boostsecurityio/lotp☆101Updated 7 months ago
- ☆109Updated this week
- Security tool against dependency typosquatting attacks☆34Updated this week
- Tool for obfuscating and deobfuscating data.☆64Updated 8 months ago
- Protect against subdomain takeover☆92Updated 5 months ago
- ☆28Updated 3 months ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆140Updated 5 months ago
- prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.☆37Updated this week
- ☆107Updated last month
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …