finos / CatchITLinks
Source code secret scanner
☆53Updated last year
Alternatives and similar repositories for CatchIT
Users that are interested in CatchIT are comparing it to the libraries listed below
Sorting:
- Scanner to identify dangling DNS records and subdomain takeovers☆46Updated 9 months ago
- A CLI project wrapping application security testing (AST) APIs☆57Updated this week
- A community collection of security reviews of open source software components.☆95Updated last year
- ☆10Updated 3 years ago
- The Secure Coding Framework☆22Updated 5 years ago
- An open-source collection of API key rotation tutorials.☆73Updated 2 months ago
- Kenna Security API and Scripting Toolkit☆34Updated 3 weeks ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆95Updated 6 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆136Updated last year
- Sharing software supply chain security open source projects☆52Updated 2 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated last month
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆66Updated 2 months ago
- OWASP Foundation Web Respository☆55Updated 2 years ago
- A walkthrough of security controls for a serverless architecture via a demo application☆12Updated 3 years ago
- Data about all known supply-chain attacks through history☆58Updated 3 months ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆47Updated last year
- A tool to check the security settings of Github Organizations.☆72Updated 2 years ago
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago
- A framework for understanding the capabilities of automated detection methods at identifying classes of application security vulnerabilit…☆30Updated last week
- ☆28Updated last week
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆72Updated 2 years ago
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated last year
- A project to visualize the software supply chain☆52Updated last year
- A small library to alter AWS API requests; Used for fuzzing research☆22Updated last year
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆103Updated last year
- ☆121Updated this week
- Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security☆106Updated last week
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆114Updated last month
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆129Updated 3 weeks ago