Awesome secure by default libraries to help you eliminate bug classes!
☆700Dec 6, 2025Updated 2 months ago
Alternatives and similar repositories for awesome-secure-defaults
Users that are interested in awesome-secure-defaults are comparing it to the libraries listed below
Sorting:
- ☆381Apr 18, 2024Updated last year
- Gram is Klarna's own threat model diagramming tool☆331Jan 26, 2026Updated last month
- Customized CVE FEED Notifier☆113Apr 22, 2025Updated 10 months ago
- A Golang program to rotate AWS & GCP account keys☆67May 12, 2025Updated 9 months ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆574Feb 12, 2026Updated 3 weeks ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆142Feb 26, 2026Updated last week
- A tool to uncover undocumented APIs from the AWS Console.☆116Apr 29, 2025Updated 10 months ago
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆680Updated this week
- AWS honey token manager☆89Aug 1, 2024Updated last year
- Every practical and proposed defense against prompt injection.☆642Feb 22, 2025Updated last year
- Cloud Commotion intends to cause chaos to simulate security incidents☆146Jun 18, 2024Updated last year
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆84Jan 30, 2026Updated last month
- Anvilogic Forge☆115Sep 18, 2025Updated 5 months ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆832Mar 28, 2025Updated 11 months ago
- Collection of example Service Control Policies (SCPs) that are useful for sandbox and training AWS accounts.☆161Dec 22, 2025Updated 2 months ago
- Validate the isolation posture of your container environment.☆313Feb 11, 2026Updated 3 weeks ago
- Halberd : Multi-Cloud Agentic Attack Tool☆334Jan 12, 2026Updated last month
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆174Feb 22, 2026Updated last week
- cloudgrep is grep for cloud storage☆326Feb 26, 2025Updated last year
- ☆117Feb 11, 2026Updated 3 weeks ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆113Nov 13, 2024Updated last year
- Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.☆137May 7, 2025Updated 9 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆107Jan 30, 2025Updated last year
- ☆114Jun 8, 2023Updated 2 years ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆117Feb 25, 2026Updated last week
- Documenting your Threat Models with HCL☆454Updated this week
- Automating situational awareness for cloud penetration tests.☆2,299Updated this week
- All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.☆370Feb 13, 2026Updated 2 weeks ago
- This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.☆649Updated this week
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated 11 months ago
- GitHub Actions Pipeline Enumeration and Attack Tool☆733Sep 17, 2025Updated 5 months ago
- #supply #chain #attack #detection☆646Feb 27, 2026Updated last week
- Search engine for CTF writeups with instant results.☆152Mar 6, 2025Updated 11 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆142Jan 2, 2025Updated last year
- ngrok Collaborator Link — yet another Burp Collaborator alternative for free with ngrok.☆113Jan 4, 2024Updated 2 years ago
- ☆124May 26, 2025Updated 9 months ago
- Collection of cheat sheets useful for pentesting☆593Jun 27, 2024Updated last year
- boostsecurityio/poutine☆367Feb 23, 2026Updated last week