michalkoczwara / DevSecOps-Studio

Related projects ⓘ

Alternatives and complementary repositories for DevSecOps-Studio

• vulnman / vulnman
  A penetration testing and vulnerability management application written using the powerful django framework.
  ☆28Updated last year
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆28Updated 2 years ago
• mturhanlar / turme
  This is a repository for Penetration Test, Purple Team Exercise and Red Team
  ☆17Updated 11 months ago
• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆25Updated 4 months ago
• righettod / website-passive-reconnaissance
  Script to automate, when possible, the passive reconnaissance performed on a website prior to an assessment.
  ☆36Updated 2 weeks ago
• PortSwigger / nuclei-burp-integration
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆27Updated last year
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆49Updated 2 years ago
• Whitespots-OU / DevSecOps-Pipelines
  Application Security pipelines
  ☆50Updated 2 years ago
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆49Updated last year
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆22Updated 2 years ago
• CyberSecurityUP / Adversary-Emulation-Guide
  ☆16Updated last year
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆42Updated last year
• wavestone-cdt / DEFCON-CICD-pipelines-workshop
  ☆91Updated 2 years ago
• Outpost24 / outpost24-cors-check
  Additional active scan checks for BURP
  ☆20Updated last month
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆39Updated 2 years ago
• DevSecOpsDocs / terraform-nuclear-pond
  Backend for Nuclear Pond
  ☆21Updated 11 months ago
• va1da5 / manual-source-code-review
  Regex patterns for manual application source code review
  ☆25Updated 3 years ago
• carlospolop / Cloudtrail2IAM
  ☆17Updated last year
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆58Updated last year
• passkwall / nmap-to-neo4j
  Script for importing Nmap results into a Neo4j Graph Database
  ☆18Updated 2 years ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆50Updated 2 years ago
• CoolHandSquid / TmuxRecon
  Automate the scanning and enumeration of machines externally while maintaining complete control over scans shot to the targets with the s…
  ☆17Updated 3 years ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆46Updated last year
• pentesteracademy / reconpal
  ReconPal: Leveraging NLP for Infosec
  ☆55Updated 2 years ago
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆38Updated 2 years ago
• OWASP / www-project-asvs-security-evaluation-templates-with-nuclei
  OWASP ASVS Security Evaluation Templates with Nuclei
  ☆20Updated 2 weeks ago
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆70Updated last year
• emgaurav / objectify-s3
  Objectify-s3 is a tool that recursively checks AWS S3 buckets and objects for misconfigured permissions.
  ☆15Updated 3 months ago