sec-mirror / cis-benchmarks
Mirror - CIS Benchamarks
☆39Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for cis-benchmarks
- Based on Lightspin proprietary data, research, and our tracking of cloud security trends in the market, our research team has compiled a …☆39Updated 2 years ago
- Tool to discover external and internal network attack surface☆192Updated 5 months ago
- Determine privileges from cloud credentials via brute-force testing.☆64Updated 2 months ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆27Updated last year
- Blogpost series showcasing interesting cloud - web app security bugs☆46Updated last year
- Static code analysis tool based on Elasticsearch☆130Updated 3 years ago
- A fingerprint generation helper for nuclei network templates☆71Updated last year
- ☆109Updated last year
- Simple tool to decrypt Jenkins encrypted strings☆71Updated last year
- Jekyll Files for cloudsecwiki.com☆49Updated 3 years ago
- Fast and lightweight Web Application Firewall Fingerprinting tool☆60Updated last year
- Contains all my research and content produced regarding the log4shell vulnerability☆32Updated 2 years ago
- ☆42Updated last year
- Awesome resources about Security in Kubernetes☆40Updated last year
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆77Updated last year
- A simple remote scanner for Atlassian Jira☆118Updated last year
- Mindmaps allow to organize and understand information faster and better.☆2Updated 3 years ago
- A compilation of network scanning strategies to find vulnerable devices☆72Updated 2 years ago
- WAF bypass PoC☆43Updated last year
- Determine the running software version of a remote F5 BIG-IP management interface.☆63Updated 10 months ago
- A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services …☆49Updated last year
- ☆16Updated last year
- GCP GOAT is the vulnerable application for learn the GCP Security☆62Updated last year
- Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud☆50Updated 2 years ago
- Compiles a list of major CDN and WAF subnets.☆63Updated this week
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆74Updated 2 years ago
- a deterministic finite automata ranker☆69Updated 2 years ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆51Updated last month
- Nuclei templates for K8S security scanning☆102Updated 2 years ago