serain / crack-sec-eng-interviews
Cracking the Security Engineer Interviews
☆46Updated 2 years ago
Related projects: ⓘ
- Holds the public Hacking the Cloud CTFs.☆50Updated 6 months ago
- A public cloud security knowledgebase - https://www.secwiki.cloud/☆48Updated 6 months ago
- Blogpost series showcasing interesting cloud - web app security bugs☆44Updated last year
- Nuclei plugins to audit Chrome extensions☆64Updated 2 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆193Updated 4 months ago
- 🖇️ STRIDE vs. ASVS equivalence table☆74Updated 3 weeks ago
- Awesome list for cloud security related projects☆70Updated last year
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆127Updated last year
- Fetch the details of assets hosted on AWS.☆85Updated 9 months ago
- This is a RSS feed collection for all the InfoSec Content Creators☆30Updated 10 months ago
- Search for vulnerabilities and exposures while filtering based on age, keywords, and other parameters.☆126Updated last year
- GCP GOAT is the vulnerable application for learn the GCP Security☆61Updated 11 months ago
- ☆55Updated last year
- 📚A curated list of product security resources.☆18Updated 2 years ago
- Summary of Cyber Security interview questions I have been through, hope this helps☆64Updated 4 years ago
- Open a DNS server that knows no records but records every request. Used for DNS exfiltration.☆65Updated 2 years ago
- ☆108Updated last year
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me☆16Updated last month
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆95Updated 7 months ago
- A curated list of Awesome Security Challenges.☆168Updated 8 months ago
- a vulnerable GraphQL application☆18Updated 4 years ago
- Repository with some necessary information for you to create your PenTest consultancy☆92Updated last year
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆91Updated 9 months ago
- An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites…☆53Updated last year
- HazProne is a Cloud Pentesting Framework that emulates close to Real-World Scenarios by deploying Vulnerable-By-Demand AWS resources enab…☆39Updated 2 years ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆30Updated last year
- A list of awesome penetration testing tools and resources.☆76Updated 11 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆38Updated 9 months ago
- LLM Testing Findings Templates☆65Updated 7 months ago
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆159Updated last month