dagheyman / awesome-product-securityLinks
πA curated list of product security resources.
β21Updated 3 months ago
Alternatives and similar repositories for awesome-product-security
Users that are interested in awesome-product-security are comparing it to the libraries listed below
Sorting:
- β55Updated 2 years ago
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enabβ¦β40Updated 3 years ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a targetβ47Updated 2 years ago
- GCP GOAT is the vulnerable application for learn the GCP Securityβ67Updated 4 months ago
- Blogpost series showcasing interesting cloud - web app security bugsβ49Updated 2 years ago
- Run Capture the Flags and Security Trainings with OWASP WrongSecretsβ52Updated this week
- Manage attack surface data on Elasticsearchβ23Updated last year
- Jumpstart multiple WebSocket servers quicklyβ32Updated 3 years ago
- β13Updated 3 years ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)β44Updated 2 years ago
- Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Maβ¦β44Updated 3 months ago
- β60Updated 2 years ago
- β50Updated last year
- Enumerate AWS permissions and resources.β70Updated 3 years ago
- A not-curated list of cloud hacking labsβ27Updated last year
- Do It Yourself! (DIY) Web Penetration Testing is a guideline in performing security test cases against web applicationsβ39Updated 2 years ago
- A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services β¦β50Updated 2 years ago
- Scripts and misc. stuff related to the PortSwigger Web Academyβ17Updated 3 years ago
- Determine privileges from cloud credentials via brute-force testing.β69Updated last year
- InfoSec OpenAI Examplesβ19Updated last year
- MyOpenVDP is a free web application to install a vulnerability disclosure policy or a vulnerability disclosure program on your assets. (Vβ¦β31Updated last year
- Collection of Tools & Techniques for analyzing URLsβ32Updated 2 years ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a pβ¦β30Updated 8 months ago
- ReconPal: Leveraging NLP for Infosecβ56Updated 3 years ago
- My Offensive Security OSWA certification experience and my personal opinion what helps in preparation for the examβ40Updated 2 years ago
- Automated tool for domains & Subdomains Gatheringβ14Updated last year
- β24Updated 3 months ago
- Nuclei plugins to audit Chrome extensionsβ65Updated last year
- A web security research tool for DOM testingβ24Updated this week
- β11Updated 2 years ago