dagheyman / awesome-product-security
πA curated list of product security resources.
β19Updated 2 years ago
Alternatives and similar repositories for awesome-product-security:
Users that are interested in awesome-product-security are comparing it to the libraries listed below
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabβ¦β39Updated 2 years ago
- β56Updated 2 years ago
- Scripts and misc. stuff related to the PortSwigger Web Academyβ17Updated 3 years ago
- GCP GOAT is the vulnerable application for learn the GCP Securityβ64Updated last year
- β35Updated last month
- A not-curated list of cloud hacking labsβ25Updated last year
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilitiesβ27Updated last month
- Regex patterns for manual application source code reviewβ27Updated 4 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β40Updated last year
- Virtual Security Operations Centerβ50Updated last year
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by meβ18Updated 8 months ago
- Blogpost series showcasing interesting cloud - web app security bugsβ47Updated last year
- Manage attack surface data on Elasticsearchβ22Updated last year
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlareβ59Updated 2 years ago
- This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv2 from eLearnSecurityβ14Updated 4 years ago
- β22Updated 3 years ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)β43Updated 2 years ago
- yataf extracts secrets and paths from files or urls - its best used against javascript filesβ52Updated 7 months ago
- β24Updated 6 years ago
- A tool for secrets management, encryption as a service, and privileged access managementβ14Updated last month
- β37Updated last year
- A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services β¦β49Updated 2 years ago
- Damn Vulnerable Rails appβ12Updated 12 years ago
- β20Updated 2 years ago
- Run Capture the Flags and Security Trainings with OWASP WrongSecretsβ45Updated this week
- Enumerate AWS permissions and resources.β68Updated 2 years ago
- β21Updated 7 years ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a targetβ47Updated 2 years ago
- A web security research tool for DOM testingβ20Updated this week
- β12Updated 3 years ago