michalkoczwara / DevSecOps-StudioLinks
Virtual environment for learning DevSecOps
☆39Updated 8 years ago
Alternatives and similar repositories for DevSecOps-Studio
Users that are interested in DevSecOps-Studio are comparing it to the libraries listed below
Sorting:
- Application Security pipelines☆51Updated 3 years ago
- ☆101Updated 2 months ago
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents☆67Updated 8 months ago
- Automatic security vulnerability remediation for your code.☆64Updated this week
- Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based …☆105Updated 6 months ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)☆45Updated 2 years ago
- An extension to use Semgrep inside Burp Suite.☆89Updated 8 months ago
- FastCVE: A Dockerized CVE search tool with API and CLI support for security vulnerability queries.☆60Updated 3 weeks ago
- First iteration of ML based Feedback WAF☆59Updated last year
- automated tool designed to streamline the search and identification of Proofs of Concept (POCs)☆20Updated last year
- Cloud Exploit Framework☆113Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆31Updated 2 years ago
- ReconPal: Leveraging NLP for Infosec☆57Updated 3 years ago
- Melee: Tool to Detect Infections in MySQL Instances☆22Updated 2 years ago
- Collection of fuzzing payloads and corpus from all around added as sub modules☆15Updated 8 months ago
- Repository of AI-generated Nuclei templates for public CVEs not yet covered by existing templates, enhancing detection speed and coverage…☆117Updated 4 months ago
- Burp Suite Extension with MCP Server to enhance manual application security testing☆31Updated last week
- A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities☆32Updated 2 months ago
- REST-Attacker is designed as a proof-of-concept for the feasibility of testing generic real-world REST implementations. Its goal is to pr…☆79Updated 3 years ago
- Script to automate, when possible, the passive reconnaissance performed on a website prior to an assessment.☆38Updated 3 weeks ago
- Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.☆186Updated 2 years ago
- Run Capture the Flags and Security Trainings with OWASP WrongSecrets☆54Updated last week
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆40Updated 3 years ago
- Bounty Prompt is an Open-Source Burp Suite extension by Bounty Security that leverages advanced AI via Burp AI and Groq AI. It enables us…☆112Updated 11 months ago
- Damn Vulnerable SCA Application☆43Updated last week
- Secrets scanner that understands code☆163Updated last month
- Jumpstart multiple WebSocket servers quickly☆31Updated 4 years ago
- A list of threat sinks used in the manual security source code review for application security☆76Updated 2 years ago
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆94Updated 2 years ago
- Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities☆41Updated this week