michalkoczwara / DevSecOps-Studio

Related projects ⓘ

Alternatives and complementary repositories for DevSecOps-Studio

• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆25Updated 3 months ago
• Whitespots-OU / DevSecOps-Pipelines
  Application Security pipelines
  ☆51Updated 2 years ago
• PalindromeLabs / WebSockets-Playground
  Jumpstart multiple WebSocket servers quickly
  ☆28Updated 2 years ago
• trickest / elasticsearch_index
  Manage attack surface data on Elasticsearch
  ☆20Updated 11 months ago
• Macmod / goblob
  A fast enumeration tool for publicly exposed Azure Storage blobs.
  ☆77Updated last year
• stafordtituss / HazProne
  HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…
  ☆39Updated 2 years ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆22Updated 2 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆87Updated last year
• mobb-dev / bugsy
  ☆50Updated this week
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆41Updated last year
• 0xAkashsky / sub-scout
  Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)
  ☆35Updated last year
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆36Updated 2 years ago
• mturhanlar / turme
  This is a repository for Penetration Test, Purple Team Exercise and Red Team
  ☆17Updated 10 months ago
• The-Login / DNS-Analyzer
  A Burp Suite extension for finding DNS vulnerabilities in web applications!
  ☆94Updated last year
• carlospolop / Cloudtrail2IAM
  ☆16Updated last year
• adityaks / melee
  Melee: Tool to Detect Infections in MySQL Instances
  ☆21Updated last year
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆69Updated last year
• HarshVaragiya / sslsearch
  Hunt SSL Certificates for interesting keywords on major cloud service providers / internet
  ☆33Updated 10 months ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆57Updated last year
• dsecuredcom / yataf
  yataf extracts secrets and paths from files or urls - its best used against javascript files
  ☆51Updated last month
• morpheuslord / Nmap-API
  Uses python3.10, Debian, python-Nmap, OpenaAI, and flask framework to create a Nmap API that can do scans with a good speed online and is…
  ☆76Updated 4 months ago
• RedTeamOperations / GoogleWorkspaceDirectoryDump
  ☆16Updated 2 years ago
• RoseSecurity / CloudPulse
  A tool to curate compelling news on cloud technologies and cybersecurity. By aggregating information from RSS feeds and Reddit, it identi…
  ☆33Updated 2 months ago
• bughuntar / Vulnerable-Code-Snippets
  Vulnerable Code Snippets
  ☆45Updated last year
• chaudharyarjun / RepoReaper
  RepoReaper is an automated tool crafted to meticulously scan and identify exposed .git repositories within specified domains and their su…
  ☆32Updated 8 months ago
• kulkansecurity / gitxray
  A multifaceted security tool which leverages Public GitHub REST APIs for OSINT, Forensics, Pentesting and more.
  ☆33Updated last week
• haqqibrahim / Sling-Shot-R3con
  🚀 Sling Shot R3con: Automate Your Bug Bounty and Pentest Reconnaissance with Project Discovery tools 🎯
  ☆24Updated last year