openappsec / waf-comparison-projectLinks
Testing datasets and tools to compare WAF efficacy
☆191Updated 10 months ago
Alternatives and similar repositories for waf-comparison-project
Users that are interested in waf-comparison-project are comparing it to the libraries listed below
Sorting:
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆682Updated 3 weeks ago
- A full insecure kubernetes application for testing security tools☆90Updated 3 months ago
- OWASP Foundation Web Respository☆100Updated last month
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆292Updated last year
- Repo to hold wazuh manager mcp server☆71Updated 4 months ago
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆176Updated last month
- DevSecOpsGuides☆191Updated 9 months ago
- Gram is Klarna's own threat model diagramming tool☆329Updated this week
- Halberd : Multi-Cloud Agentic Attack Tool☆331Updated 2 weeks ago
- 🧰 Multi Tool Kubernetes Pentest Image☆251Updated 4 months ago
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆101Updated 3 weeks ago
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆479Updated 7 months ago
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆262Updated 6 months ago
- Curating Falco rules with MITRE ATT&CK Matrix☆86Updated last year
- CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…☆265Updated 2 months ago
- Add a layer of active defense to your cloud applications.☆102Updated this week
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆312Updated 3 months ago
- Generate datasets of cloud audit logs for common attacks☆232Updated 3 weeks ago
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆195Updated 4 months ago
- Customized CVE FEED Notifier☆114Updated 9 months ago
- ☆185Updated 9 months ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆566Updated 2 months ago
- Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…☆142Updated 3 years ago
- Cloud Offensive Breach and Risk Assessment (COBRA) Tool☆102Updated 8 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆141Updated last year
- 🛡️ High-performance WAF & CDN detection tool with effectiveness testing suite. Identify protection layers (Cloudflare, Akamai, AWS) and …☆105Updated this week
- This repo contains IOC, malware and malware analysis associated with Public cloud☆248Updated last year
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆214Updated this week
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆117Updated 2 weeks ago
- Deep Linux runtime visibility meets Wireshark☆302Updated 2 months ago