fedoraredteam / red-container
☆11Updated 6 years ago
Related projects: ⓘ
- A Dockerfile that creates an image with known vulnerabilities.☆49Updated 2 years ago
- A tool for testing continuous integration (CI) or continuous delivery (CD) system security☆23Updated 11 years ago
- ☆35Updated 5 years ago
- ☆46Updated 9 years ago
- ☆48Updated 4 years ago
- Utilities for programmatic analysis of Cartography data.☆32Updated last year
- Python module for evaluation of AWS account best practices around incident handling readieness.☆54Updated 4 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆84Updated 5 years ago
- Terraform module which provides easy to configure AWS environment for running automated security scanning solutions at scheduled interval…☆44Updated 5 years ago
- OWASP Threat Dragon with Gitlab Integration☆24Updated 6 years ago
- AppSecPipeline Specification for DevOps automation.☆38Updated last year
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆20Updated last year
- Simple DLP monitor for AWS S3 is a tool built on top of CloudWatch events and Lambda functions to alert you when data is transferred to S…☆17Updated 4 years ago
- A multi scanner for docker images. It drives Clair, Anchore, Trivy, Snyk, Grype, AWS ECR scans and consolidates the results.☆14Updated last year
- Decision trees generated via Graphviz to inform pragmatic threat modelling.☆10Updated 3 years ago
- Push-button Security Operations Center using Kubernetes☆12Updated 7 years ago
- InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark☆77Updated 3 months ago
- ☆20Updated 5 years ago
- Repo to hold veracode related issues and code snippets☆9Updated 7 years ago
- ☆17Updated 5 months ago
- Containerized pentesting tools☆44Updated 2 years ago
- ☆27Updated 2 months ago
- Proof of Concept Zappa Based AWS Persistence and Attack Platform☆37Updated 4 years ago
- Darkbit Cloud Security Tools☆25Updated 3 years ago
- ***MERGED: SEE README:*** The XCCDF to InSpec parser scans and extracts the controls defined in the DISA XCCDF STIG XML documents and con…☆11Updated 5 years ago
- Owasp Zap chart for Kubernetes☆49Updated 2 years ago
- A Docker build for OWASP Zed Attack Proxy to be used in CI/CD pipelines☆26Updated 4 years ago
- A Terraform module for GRR: the distributed incident forensics and response framework☆51Updated 4 years ago
- Enterprise Linux Exploit Mapper☆28Updated 6 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆61Updated 5 years ago