paulveillard / cybersecurity-sast
An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Static Application Security Testing (SAST) Tools.
☆16Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for cybersecurity-sast
- An ongoing & curated collection of awesome software practices and remediation, libraries and frameworks,payloads and techniques, best gui…☆31Updated last year
- An ongoing & curated collection of awesome vulnerability scanning software, libraries and frameworks, best guidelines, technical resource…☆10Updated 2 years ago
- FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)☆39Updated 2 months ago
- An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites…☆12Updated 8 months ago
- 📚A curated list of product security resources.☆18Updated 2 years ago
- My custom semgrep rules☆18Updated 4 years ago
- Web application pentesting recon☆23Updated 4 years ago
- Here are some common interview questions for an application security position you can review for your own interview, along with example a…☆26Updated 2 years ago
- An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites…☆53Updated last year
- A collection of one off hacks and simple scripts☆27Updated last year
- InfoSec OpenAI Examples☆19Updated 11 months ago
- An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, website…☆11Updated 2 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆55Updated 4 months ago
- ZAP Management Scripts☆21Updated this week
- Regex patterns for manual application source code review☆24Updated 3 years ago
- Jumpstart multiple WebSocket servers quickly☆28Updated 2 years ago
- Virtual environment for learning DevSecOps☆29Updated 6 years ago
- ☆11Updated last year
- Dockerfile with advanced configurations for Offensive Docker.☆12Updated 4 years ago
- Tool for fetching all the available waybackmachine snapshot urls☆17Updated last month
- Additional active scan checks for BURP☆20Updated last month
- This is a collection of ZAProxy Automation Tools and scripts to automate security tests of WEB Applications and WEB Sites☆26Updated last year
- This repository is a collection of Awesome XSS Payloads in 1 txt file☆12Updated 4 years ago
- Cool One Liners at one place to make your recon and bug bounty skills better !☆16Updated 4 years ago
- Basic guide for performing a Physical PenTest - Nist 800-12, 800-53, 800-115, 800-152☆16Updated last year
- Penetration Testing Checklist☆35Updated 4 years ago
- Automate bug bounty recon using bash alias☆15Updated 3 months ago
- A bash script that automates the process of port scanning and service discovery on specified target hosts. The aim of the scripts is redu…☆12Updated 3 weeks ago
- Automatic tool using for crawling code to find low-hang fruit vulnerabilities - Based on OWASP Secure Code Review Guide☆20Updated 4 years ago
- Objectify-s3 is a tool that recursively checks AWS S3 buckets and objects for misconfigured permissions.☆15Updated 3 months ago