Presentations, training modules, and other education materials from Duo Security's Application Security team.
☆76Jul 15, 2021Updated 4 years ago
Alternatives and similar repositories for appsec-education
Users that are interested in appsec-education are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Monitors Github for leaked secrets☆206Oct 25, 2024Updated last year
- The command-line client for Journal☆12Oct 26, 2024Updated last year
- Everything Application Security☆27Apr 28, 2026Updated last week
- Simple mind maps for IoT security attack surfaces and methodologies☆17Aug 12, 2019Updated 6 years ago
- Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0☆41Dec 8, 2022Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Tools to automate AWS Cloud security assessments☆24Mar 26, 2020Updated 6 years ago
- ☆23May 22, 2023Updated 2 years ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆11Oct 29, 2018Updated 7 years ago
- ☆141Mar 29, 2023Updated 3 years ago
- goSDL☆521Nov 3, 2025Updated 6 months ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Mar 26, 2026Updated last month
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Apr 13, 2017Updated 9 years ago
- This project is about creating and publishing threat model examples.☆433Nov 10, 2021Updated 4 years ago
- Unit testing framework for test driven security of AWS, GCP, Heroku and more.☆108Jan 22, 2026Updated 3 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Common Security Interview Questions with Answers☆31Jul 4, 2023Updated 2 years ago
- A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.☆20Jan 24, 2021Updated 5 years ago
- Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …☆41Sep 23, 2020Updated 5 years ago
- Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Co…☆21Apr 17, 2026Updated 3 weeks ago
- In this workshop we will build a pipeline for a sample WordPress site in a stack. We will explore how to validate, lint and test template…☆18May 20, 2024Updated last year
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Jul 7, 2018Updated 7 years ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆47Sep 2, 2022Updated 3 years ago
- threatspec - continuous threat modeling, through code☆383Dec 30, 2020Updated 5 years ago
- Segment's Threat Modeling training for our engineers☆246May 4, 2021Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- materials we hand out☆146Jul 17, 2025Updated 9 months ago
- An ongoing & curated collection of awesome software practices and remediation, libraries and frameworks,payloads and techniques, best gui…☆41Sep 23, 2023Updated 2 years ago
- A collection of AWS penetration testing junk☆1,224Aug 30, 2023Updated 2 years ago
- ☆56Jun 17, 2020Updated 5 years ago
- Repo to hold mapping of user-security-stories☆120Nov 28, 2018Updated 7 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆181Dec 7, 2018Updated 7 years ago
- The boilerplate for a new Journal site☆19Oct 15, 2019Updated 6 years ago
- Security Champions Playbook v 2.1☆393Sep 25, 2023Updated 2 years ago
- CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.☆912Dec 17, 2021Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Collect IAM information from all your AWS organization, accounts, and resources.☆87Apr 27, 2026Updated last week
- NCC Group Template for the Microsoft Threat Modeling Tool 2016 for Automotive Security☆48Jul 10, 2020Updated 5 years ago
- Utility for downloading and mounting EBS snapshots using the EBS Direct API's☆93Mar 17, 2025Updated last year
- generate lookalike domains using a few simple techniques (homoglyphs, alt TLDs, prefix/suffix)☆33Sep 15, 2023Updated 2 years ago
- Web Sight Back-end Community Edition☆43Dec 7, 2022Updated 3 years ago
- python tools to assist in penetration testing☆14Jan 19, 2026Updated 3 months ago
- ☆39Jul 31, 2025Updated 9 months ago