snyk-tech-services / jira-tickets-for-new-vulns

Related projects: ⓘ

• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆93Updated 9 months ago
• snyk-tech-services / snyk-scm-contributors-count
  Count distinct contributor of Snyk watched repos across several SCM
  ☆30Updated 2 months ago
• bridgecrewio / cfngoat
  Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates ho…
  ☆91Updated last month
• orcasecurity / orca-toolbox
  ☆108Updated last month
• snyk / snyk-api-import
  ⚡️Snyk API powered import tool to help you automate & monitor a large scale import into Snyk organizations. Designed for onboarding with …
  ☆35Updated 3 weeks ago
• trustoncloud / threatmodel-for-aws-s3
  ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆148Updated 11 months ago
• SummitRoute / imdsv2_wall_of_shame
  List of vendors that do not allow IMDSv2 enforcement
  ☆142Updated 4 months ago
• fwdcloudsec / known_aws_accounts
  List of known AWS accounts
  ☆157Updated 3 weeks ago
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆312Updated 2 years ago
• snyk-labs / snyk-cicd-integration-examples
  Examples of integrating the Snyk CLI into a CI/CD system
  ☆78Updated 5 months ago
• iacsecurity / tool-compare
  ☆276Updated last year
• WithSecureLabs / IAMSpy
  ☆190Updated last month
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆137Updated 6 months ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆169Updated 3 weeks ago
• onemorepereira / aws-sso-reporter
  AWS SSO Reporter
  ☆54Updated last year
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆53Updated 8 months ago
• duo-labs / cloudtrail-partitioner
  ☆150Updated last year
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆397Updated 2 weeks ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆68Updated last year
• PaloAltoNetworks / Prisma-Enhanced-Remediation
  Create custom auto-remediation solutions using serverless functions in the cloud.
  ☆52Updated last year
• Coalfire-CF / Coalfire-AWS-RAMPpak
  Coalfire AWS RAMP/pak Reference Architecture
  ☆35Updated 3 weeks ago
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆153Updated 7 months ago
• ScaleSec / terraform_aws_scp
  AWS Organizations Service Control Policies (SCPs) written in HashiCorp Terraform.
  ☆229Updated 11 months ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆332Updated 2 years ago
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆102Updated 8 months ago
• primeharbor / org-kickstart
  Kickstart and manage your AWS Organization via Terraform
  ☆49Updated last month
• snyk-labs / pysnyk
  A Python client for the Snyk API.
  ☆85Updated last month
• welldone-cloud / aws-list-resources
  ☆131Updated last month
• adamshostack / 4QuestionFrame
  Shostack's 4 Question Frame for Threat Modeling
  ☆83Updated 2 years ago
• SeisoLLC / easy_infra
  A docker container to simplify and secure the use of Infrastructure as Code (IaC)
  ☆67Updated this week