DevSecOps Pipeline using SAST + DAST and SCA tools
☆73Sep 26, 2025Updated 5 months ago
Alternatives and similar repositories for gha-devsecops
Users that are interested in gha-devsecops are comparing it to the libraries listed below
Sorting:
- Yet Another SCA tool☆13Nov 10, 2022Updated 3 years ago
- AWS Trail Recon is an idea that came up during gohacking's offensive AWS security training. The idea is to use cloudtrail:lookupevents to…☆15May 14, 2024Updated last year
- A curated list of awesome Penetration Testing Tools ported to Google Colab to make faster and easier to execute and test.☆38Oct 31, 2024Updated last year
- ☆12Jan 28, 2025Updated last year
- Burp Enterprise Toolkit☆12Feb 25, 2022Updated 4 years ago
- workshop about cloud-native security☆71Apr 14, 2022Updated 3 years ago
- Payloads for Web Application Security Testing☆15Dec 1, 2025Updated 3 months ago
- Systematic Universal Security Testing Orchestration☆37Mar 28, 2022Updated 3 years ago
- SecretBench is a dataset consisting of different secret types collected from public open-source repositories.☆49Jun 13, 2024Updated last year
- Software for fuzzing, used on web application pentestings.☆178Mar 8, 2024Updated last year
- GitHub action to run Kubescape scans☆22Jan 12, 2026Updated last month
- Este repositorio é apenas um exemplo de como adicionar OWASP ZAP Actions em uma pipeline de DevOps.☆19Mar 12, 2021Updated 4 years ago
- CVE-2022-22965 - CVE-2010-1622 redux☆19Apr 18, 2023Updated 2 years ago
- Tool for testing reflections in the HTTP responses☆60Jun 10, 2023Updated 2 years ago
- log4j hunter helper - Compatible with Deb, Redhat and Suse, and other ready for ansible and other automations that uses exit code for Dev…☆23Dec 20, 2021Updated 4 years ago
- ☆25Feb 7, 2026Updated last month
- ☆25Feb 2, 2026Updated last month
- Halo-Doc is an online Doctor Consultancy Platform complete with real-time chat using Socket.IO and seamless video calling functionality. …☆11Sep 30, 2023Updated 2 years ago
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.☆1,031Jan 5, 2026Updated 2 months ago
- OpenCTI.BR ThreatFeeds Public Repository☆122Updated this week
- ☆29Apr 26, 2025Updated 10 months ago
- OSINT tool for domain discovery☆10Apr 5, 2024Updated last year
- TEAM Mentor 3.x Released Code☆16Aug 5, 2016Updated 9 years ago
- Infraestrutura Hands-On 4linux☆29Sep 3, 2021Updated 4 years ago
- CVE-2021-42008: Exploiting A 16-Year-Old Vulnerability In The Linux 6pack Driver☆31May 1, 2022Updated 3 years ago
- A library for cross iframe communication with high level API and features.☆39Updated this week
- Labs for Threat Modelling training delivered by ControlPlane☆35Feb 24, 2026Updated last week
- The extension of Burp Suite for Conviso Platform aims to serve as an integration between them, making the life of an analyst easier, beca…☆36Dec 30, 2025Updated 2 months ago
- ☆31Apr 5, 2022Updated 3 years ago
- A balanced chaos test☆34Nov 21, 2019Updated 6 years ago
- A quick and dirty (and a little shitty) burp extension that uses cheap deepseek api to send request and response and maybe found somethin…☆34Jan 26, 2025Updated last year
- Some tests using FFMpeg to transcode video to multiple resolutions with AES-128 encryption.☆31Oct 21, 2020Updated 5 years ago
- Useful scripts, Docker images, docker-compose apps, and Terraform modules.☆149Feb 15, 2026Updated 3 weeks ago
- AI voice assistant that uses Twilio Voice and ConversationRelay, and the Google Gemini API to engage in two-way conversations over a phon…☆24Feb 19, 2026Updated 2 weeks ago
- A fast, simple & powerful RESTful API based Review System, powered by Node.js, Express, MongoDB and mongoose☆12Apr 24, 2019Updated 6 years ago
- Tools to help work with bulk data when using Microsoft Purview☆14Feb 27, 2026Updated last week
- Kubernetes manifests for grafana☆42Mar 14, 2021Updated 4 years ago
- A list of resources blogs talks material about DevSecOps☆104Dec 17, 2021Updated 4 years ago
- ARCHIVED - NGINX Plus Integration with NS1 GSLB☆10May 24, 2023Updated 2 years ago