finos / CatchIT
Source code secret scanner
☆54Updated last year
Alternatives and similar repositories for CatchIT:
Users that are interested in CatchIT are comparing it to the libraries listed below
- OWASP Foundation Web Respository☆10Updated last year
- A walkthrough of security controls for a serverless architecture via a demo application☆11Updated 2 years ago
- The Secure Coding Framework☆21Updated 4 years ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆46Updated last year
- A small library to alter AWS API requests; Used for fuzzing research☆22Updated last year
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated 3 months ago
- ☆12Updated 4 years ago
- Dependency Combobulator☆93Updated last year
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆61Updated 9 months ago
- A community collection of security reviews of open source software components.☆93Updated last year
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆69Updated 2 years ago
- ☆21Updated 3 years ago
- ☆19Updated last week
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆37Updated 3 years ago
- ☆10Updated 2 years ago
- WAF bypass PoC☆47Updated last year
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆31Updated 3 years ago
- CVSS v4.0 calculator☆29Updated 7 months ago
- ☆41Updated last month
- InfoSec OpenAI Examples☆19Updated last year
- A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, sta…☆25Updated last year
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- The Secure Coding Practices Quick-reference Guide from OWASP☆34Updated last year
- Gordon is status check Github app to enforce and validate about.yaml file specifications in a repository during pull requests to drive co…☆20Updated last month
- Clean accounts over permissions in GCP infra at scale☆71Updated last year
- This repository will teach you got to present my talk "Security is everybody's job", a talk about DevSecOps.☆27Updated 2 years ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆132Updated last year
- OWASP Foundation Web Respository☆28Updated 7 months ago
- javaspringvulny - a Spring Boot web application built wrong on purpose☆19Updated 2 weeks ago
- OWASP Foundation Web Respository☆55Updated last year