Presentations, training modules, and other education materials from Duo Security's Application Security team.
☆76Jul 15, 2021Updated 4 years ago
Alternatives and similar repositories for appsec-education
Users that are interested in appsec-education are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The command-line client for Journal☆12Oct 26, 2024Updated last year
- Everything Application Security☆27Updated this week
- Simple mind maps for IoT security attack surfaces and methodologies☆17Aug 12, 2019Updated 6 years ago
- Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0☆41Dec 8, 2022Updated 3 years ago
- Tools to automate AWS Cloud security assessments☆24Mar 26, 2020Updated 6 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- ☆23May 22, 2023Updated 2 years ago
- ☆139Mar 29, 2023Updated 3 years ago
- goSDL☆522Nov 3, 2025Updated 4 months ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated this week
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Apr 13, 2017Updated 8 years ago
- This project is about creating and publishing threat model examples.☆430Nov 10, 2021Updated 4 years ago
- ☆21Jun 4, 2025Updated 9 months ago
- Unit testing framework for test driven security of AWS, GCP, Heroku and more.☆108Jan 22, 2026Updated 2 months ago
- Common Security Interview Questions with Answers☆31Jul 4, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆15Aug 25, 2021Updated 4 years ago
- A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.☆20Jan 24, 2021Updated 5 years ago
- Equal Experts Secure Delivery Playbook☆27Feb 21, 2023Updated 3 years ago
- Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …☆41Sep 23, 2020Updated 5 years ago
- Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Co…☆21Aug 26, 2025Updated 7 months ago
- In this workshop we will build a pipeline for a sample WordPress site in a stack. We will explore how to validate, lint and test template…☆18May 20, 2024Updated last year
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Jul 7, 2018Updated 7 years ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆46Sep 2, 2022Updated 3 years ago
- threatspec - continuous threat modeling, through code☆383Dec 30, 2020Updated 5 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- OpenDXL Broker is an open source version of a Data Exchange Layer (DXL) broker☆14Feb 11, 2024Updated 2 years ago
- Segment's Threat Modeling training for our engineers☆245May 4, 2021Updated 4 years ago
- materials we hand out☆147Jul 17, 2025Updated 8 months ago
- An ongoing & curated collection of awesome software practices and remediation, libraries and frameworks,payloads and techniques, best gui…☆41Sep 23, 2023Updated 2 years ago
- ☆56Jun 17, 2020Updated 5 years ago
- Application Security Awareness Training☆23Jul 13, 2020Updated 5 years ago
- Repo to hold mapping of user-security-stories☆120Nov 28, 2018Updated 7 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆182Dec 7, 2018Updated 7 years ago
- Security Champions Playbook v 2.1☆392Sep 25, 2023Updated 2 years ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.☆910Dec 17, 2021Updated 4 years ago
- Utility for downloading and mounting EBS snapshots using the EBS Direct API's☆92Mar 17, 2025Updated last year
- References, tools and sample payloads☆11Sep 16, 2016Updated 9 years ago
- generate lookalike domains using a few simple techniques (homoglyphs, alt TLDs, prefix/suffix)☆34Sep 15, 2023Updated 2 years ago
- A WDAC configuration repository with the sole intention of enriching MDE☆30Jun 18, 2025Updated 9 months ago
- Web Sight Back-end Community Edition☆43Dec 7, 2022Updated 3 years ago
- python tools to assist in penetration testing☆14Jan 19, 2026Updated 2 months ago