octodemo / advanced-security-terraformLinks
Vulnerable Terraform Projects - Fork of https://github.com/bridgecrewio/terragoat
☆14Updated last year
Alternatives and similar repositories for advanced-security-terraform
Users that are interested in advanced-security-terraform are comparing it to the libraries listed below
Sorting:
- Examples of Custom Secret Scanning Patterns☆162Updated 4 months ago
- OWASP Foundation Web Respository☆95Updated 5 months ago
- ☆72Updated 2 weeks ago
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated 4 months ago
- Count distinct contributor of Snyk watched repos across several SCM☆32Updated last year
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- ThreatModel for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based app…☆59Updated 2 years ago
- OWASP Foundation Web Respository☆55Updated 2 years ago
- GitHub action to scan container images with Palo Alto Networks' Prisma Cloud☆57Updated 2 months ago
- CICD Using GitHub Action and Harness☆17Updated 2 years ago
- GitHub Advanced Security Policy as Code☆83Updated 2 weeks ago
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆68Updated last year
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆47Updated last year
- https://breaches.cloud☆40Updated 8 months ago
- ☆41Updated 4 months ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- An AWS IAM policy statement parser and query tool.☆188Updated last week
- Manage a uniform team of security managers for every organization in your enterprise☆17Updated 10 months ago
- Coalfire AWS RAMP/pak Reference Architecture☆36Updated 9 months ago
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆155Updated last year
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆101Updated last year
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Updated last week
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆39Updated last year
- GitHub Secret Scanning Auto Remediator (GSSAR)☆44Updated last month
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆50Updated last week
- Generates runbooks for GuardDuty findings☆36Updated last year
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆155Updated 9 months ago
- Github action to generate BoM and upload to OWASP dependency track for vulnerability analysis☆42Updated 9 months ago
- GitHub Advance Security Compliance Action☆133Updated 2 years ago
- The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…☆40Updated 2 years ago