dagheyman / awesome-product-security
πA curated list of product security resources.
β18Updated 2 years ago
Related projects β
Alternatives and complementary repositories for awesome-product-security
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilitiesβ25Updated 4 months ago
- GCP GOAT is the vulnerable application for learn the GCP Securityβ62Updated last year
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabβ¦β39Updated 2 years ago
- β22Updated 3 years ago
- Blogpost series showcasing interesting cloud - web app security bugsβ46Updated last year
- Regex patterns for manual application source code reviewβ25Updated 3 years ago
- β22Updated 4 years ago
- Scripts and misc. stuff related to the PortSwigger Web Academyβ17Updated 2 years ago
- β16Updated last year
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by meβ17Updated 3 months ago
- InfoSec OpenAI Examplesβ19Updated 11 months ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlareβ58Updated last year
- Run Capture the Flags and Security Trainings with OWASP WrongSecretsβ43Updated this week
- Virtual Security Operations Centerβ49Updated last year
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobsβ36Updated last month
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)β42Updated last year
- β12Updated 2 years ago
- Tracking my journey towards earning my OSCP. This includes the process of everything that I learn along the way.β47Updated 2 years ago
- β29Updated 3 years ago
- Additional active scan checks for BURPβ20Updated last month
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β39Updated 11 months ago
- β31Updated last week
- A not-curated list of cloud hacking labsβ19Updated 7 months ago
- β55Updated last year
- moniorg is a tool that leverages crt.sh website to monitor domains of a targetβ47Updated last year
- Collection of Docker honeypot logs from 2021 - 2024β35Updated last month
- β36Updated last year
- This repository provides examples of Vulnerable and Mitigated code as per CWE Categorization.β20Updated 6 months ago
- Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloudβ50Updated 2 years ago