openappsec / waf-comparison-project
Testing datasets and tools to compare WAF efficacy
☆168Updated 2 weeks ago
Alternatives and similar repositories for waf-comparison-project:
Users that are interested in waf-comparison-project are comparing it to the libraries listed below
- Payloads that can be used for testing web application firewalls☆44Updated 2 years ago
- DevSecOpsGuides☆187Updated 2 weeks ago
- Deep Linux runtime visibility meets Wireshark☆287Updated last month
- open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. Th…☆1,143Updated last week
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆168Updated 2 weeks ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- Generate datasets of cloud audit logs for common attacks☆208Updated 7 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated 4 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆78Updated last year
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆132Updated 3 weeks ago
- A full insecure kubernetes application for testing security tools☆70Updated this week
- 🧰 Multi Tool Kubernetes Pentest Image☆229Updated 7 months ago
- ☆175Updated 4 months ago
- Halberd : Multi-Cloud Attack Platform☆256Updated 3 weeks ago
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…☆54Updated last year
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆164Updated 10 months ago
- VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities☆102Updated 5 months ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆516Updated last month
- OWASP Kubernetes security and compliance tool [WIP]☆106Updated last year
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆620Updated this week
- This is a RSS feed collection for all the InfoSec Content Creators☆32Updated last year
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆161Updated last year
- ☆258Updated 4 months ago
- This is a collection of threat detection rules / rules engines that I have come across.☆283Updated 10 months ago
- A list of cloud security tools and vendors.☆155Updated 6 months ago
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆223Updated this week
- APIsec|SCAN - Free API security testing using Github actions☆100Updated 10 months ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆273Updated 6 months ago
- Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…☆141Updated 2 years ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆138Updated 2 months ago