βΎοΈ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe π
β2,094Mar 3, 2026Updated 2 weeks ago
Alternatives and similar repositories for DevSecOps
Users that are interested in DevSecOps are comparing it to the libraries listed below
Sorting:
- Curating the best DevSecOps resources and tooling.β1,643Aug 2, 2024Updated last year
- Ultimate DevSecOps libraryβ6,631Mar 5, 2026Updated 2 weeks ago
- This is a step-by-step guide to implementing a DevSecOps program for any size organizationβ2,037Dec 21, 2024Updated last year
- An authoritative list of awesome devsecops tools with the help from community experiments and contributions.β5,349May 11, 2024Updated last year
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.β1,037Jan 5, 2026Updated 2 months ago
- Collection of Cloud and DevSecOps learning resourcesβ485Jul 22, 2021Updated 4 years ago
- Checklist for container security - devsecops practicesβ1,613Sep 15, 2025Updated 6 months ago
- Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOpβ¦β4,900Dec 31, 2025Updated 2 months ago
- A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for β¦β1,724Aug 2, 2024Updated last year
- Azure and AWS Attacksβ1,114Nov 25, 2022Updated 3 years ago
- βοΈ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-huntingβ4,542Feb 15, 2026Updated last month
- π‘οΈ Awesome Cloud Security Resources βοΈβ2,373Updated this week
- Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWSβ¦β1,526Jan 28, 2026Updated last month
- Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on pβ¦β5,437Nov 18, 2025Updated 4 months ago
- A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the communitβ¦β3,653Nov 23, 2025Updated 3 months ago
- A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.β660May 20, 2025Updated 10 months ago
- A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.β2,204Jul 14, 2024Updated last year
- Automating situational awareness for cloud penetration tests.β2,309Mar 10, 2026Updated last week
- Open-Source Unified Vulnerability Management, DevSecOps & ASPMβ4,573Updated this week
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β4,873Updated this week
- A collection of awesome security hardening guides, tools and other resourcesβ6,219Jan 20, 2026Updated last month
- A open contribute bootcamp to develop DevSecOps skills...β782Sep 18, 2023Updated 2 years ago
- OSWE, OSEP, OSED, OSEEβ3,786Jan 2, 2026Updated 2 months ago
- Mind-Maps of Several Thingsβ2,631Jun 29, 2023Updated 2 years ago
- AWSGoat : A Damn Vulnerable AWS Infrastructureβ1,984May 20, 2025Updated 9 months ago
- A curated list for Awesome Kubernetes Security resourcesβ1,993Mar 1, 2026Updated 2 weeks ago
- Threat matrix for CI/CD Pipelineβ759Jul 8, 2024Updated last year
- Security Remediation Guidesβ746Nov 24, 2025Updated 3 months ago
- All about bug bounty (bypasses, payloads, and etc)β6,665Sep 8, 2023Updated 2 years ago
- Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.β1,908Oct 1, 2025Updated 5 months ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and moreβ33,205Updated this week
- A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-referenceβ5,568Aug 6, 2023Updated 2 years ago
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.β9,414Oct 16, 2025Updated 5 months ago
- π Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.β426Feb 20, 2026Updated last month
- Granular, Actionable Adversary Emulation for the Cloudβ2,277Mar 12, 2026Updated last week
- Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, worβ¦β486Dec 13, 2021Updated 4 years ago
- Udemy Course on DevSecOpsβ100Jun 24, 2025Updated 8 months ago
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enablβ¦β27,492Updated this week
- This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage clouβ¦β2,806Sep 17, 2024Updated last year