DEPRECATED - web security checklist for Firefox Services
☆78Jan 6, 2021Updated 5 years ago
Alternatives and similar repositories for websec-check
Users that are interested in websec-check are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Equal Experts Secure Delivery Playbook☆26Feb 21, 2023Updated 3 years ago
- INACTIVE - http://mzl.la/ghe-archive - Various utilities for Pyramid-based Mozilla applications☆33Mar 27, 2019Updated 7 years ago
- Unit testing framework for test driven security of AWS, GCP, Heroku and more.☆108Jan 22, 2026Updated 5 months ago
- A Security Scanner for Go☆26Feb 11, 2019Updated 7 years ago
- Express middleware for simple pagination. Easy way to handle limit and offset☆13Jan 8, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Some tools for supporting OneCRL☆19Jun 16, 2026Updated 2 weeks ago
- A Continuous Threat Modeling methodology☆329Jun 24, 2022Updated 4 years ago
- ☆69Jul 18, 2025Updated 11 months ago
- Methodoloy for pentesting web applications.☆10Aug 18, 2022Updated 3 years ago
- Tor detect middleware for express☆14Dec 6, 2023Updated 2 years ago
- DevSecOps Working Group☆12Sep 24, 2019Updated 6 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆77Jul 15, 2021Updated 4 years ago
- Collection of links to Security stuff☆119May 22, 2026Updated last month
- Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.☆29Aug 18, 2019Updated 6 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆16Oct 3, 2018Updated 7 years ago
- materials we hand out☆145Jul 17, 2025Updated 11 months ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Feb 19, 2021Updated 5 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆53Jun 18, 2026Updated 2 weeks ago
- A zoo for malicious NPM packages☆20Dec 8, 2022Updated 3 years ago
- INACTIVE - Collection of Tools & Procedures for double checking GitHub configurations☆136May 9, 2024Updated 2 years ago
- Snyk Node Runtime Agent☆16Apr 12, 2022Updated 4 years ago
- Segment's Threat Modeling training for our engineers☆246May 4, 2021Updated 5 years ago
- A Pythonic framework for threat modeling☆1,135May 22, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A utility for password spraying using kerberos from an untrusted/non-domain joined Kali linux host. Useful for user and KDC/DC enumeratio…☆19Oct 28, 2023Updated 2 years ago
- Automate the AWS GuardDuty account invitation lifecycle for all of your organizations AWS accounts in all regions as well as aggregate an…☆66Apr 10, 2023Updated 3 years ago
- Updated incident response generator for training classes☆43Jun 2, 2021Updated 5 years ago
- GitHub Action adding a comment with information about new npm dependencies detected in a pull request☆17Jun 22, 2026Updated last week
- iRules for F5 TMOS☆13Jun 11, 2026Updated 3 weeks ago
- Listing of my writeups from HackTheBox, VulnHub, TryHackMe, others...☆19May 26, 2021Updated 5 years ago
- A place for documenting threats and mitigations related to containers orchestrators (Kubernetes, Swarm etc)☆25Jul 3, 2018Updated 7 years ago
- Mozilla's digital signature service☆175Updated this week
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Jun 11, 2026Updated 3 weeks ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- ☆56Jun 17, 2020Updated 6 years ago
- A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets☆51Jun 22, 2026Updated last week
- A small webserver vulnerable to insecure deserialization☆21Nov 30, 2017Updated 8 years ago
- Bug Hunting Handbook☆11Aug 11, 2022Updated 3 years ago
- Go static analysis tool that checks for security issues using an AST.☆29Nov 19, 2018Updated 7 years ago
- SilkETW & SilkService☆41Aug 14, 2019Updated 6 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆282Feb 17, 2026Updated 4 months ago