snyk-labs / docker-goof
A demo repo showcasing Snyk's Docker offering
☆29Updated 5 months ago
Alternatives and similar repositories for docker-goof:
Users that are interested in docker-goof are comparing it to the libraries listed below
- Identify all permitted data paths originating from the Internet to Network Interfaces within AWS Accounts across the entire AWS Organizat…☆36Updated last year
- Notes for the SCS-C01: AWS Certified Security - Specialty exam.☆13Updated 7 months ago
- A walkthrough of security controls for a serverless architecture via a demo application☆11Updated 2 years ago
- ☆37Updated last year
- CDK app to setup an isolated AWS network to experiment with ways of exfiltrating data☆18Updated 3 years ago
- ☆38Updated 9 months ago
- Hands-on workshop on how to build security automation in pipelines☆37Updated 9 months ago
- The open source version of the AWS Security Hub documentation. To provide feedback or request changes, you can submit a pull request that…☆35Updated last year
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆55Updated 3 years ago
- Coalfire AWS RAMP/pak Reference Architecture☆36Updated 5 months ago
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆150Updated last year
- Some python scripts I wrote that help with various specialized AWS security things☆10Updated 5 years ago
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆60Updated last year
- Convert cloudtrail data to MITRE ATT&CK Sightings☆79Updated 2 years ago
- ☆21Updated 7 months ago
- Repository to archive AWS Documentation for local use☆41Updated 3 months ago
- A Lambda function for Resource Tagging Automation☆49Updated 5 months ago
- An AWS IAM policy statement parser and query tool.☆171Updated 11 months ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆97Updated last year
- Safer AWS SCP deployments via real-time monitoring☆50Updated last year
- Public repository of all things cloud security.☆40Updated 4 months ago
- https://breaches.cloud☆37Updated 3 months ago
- AWS Certified Security Specialty (2020) course notes☆115Updated 4 years ago
- This package provides an easy way to create a refreshable boto3 Session with AWS Roles Anywhere.☆51Updated 2 months ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆62Updated 7 months ago
- OWASP Foundation Web Respository☆34Updated 4 months ago
- Generates runbooks for GuardDuty findings☆35Updated 7 months ago
- A carefully curated list of open source projects aimed at improving your AWS security posture!☆30Updated 2 years ago
- CloudSplaining on AWS Managed Policies☆41Updated this week