wiz-sec-public/SITF external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

wiz-sec-public/SITF

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/wiz-sec-public/SITF)

Close

wiz-sec-public / SITFView on GitHubMore

• External links
• Readme badge

A comprehensive framework for analyzing and defending against attacks targeting Software Development Life Cycle Infrastructure.

☆124Updated this week

Alternatives and similar repositories for SITF

Users that are interested in SITF are comparing it to the libraries listed below

• PaloAltoNetworks / github-oidc-utils

  View on GitHub
  ☆36Apr 29, 2025Updated 10 months ago
• disruptops / assess_network

  View on GitHub
  Assess certain AWS network configurations
  ☆12Aug 22, 2018Updated 7 years ago
• nccgroup / SFPolDevChk

  View on GitHub
  Salesforce Policy Deviation Checker
  ☆30Sep 30, 2020Updated 5 years ago
• SecurityRunners / awsdocs

  View on GitHub
  Repository to archive AWS Documentation for local use
  ☆50Oct 14, 2024Updated last year
• Permiso-io-tools / bucket-shield

  View on GitHub
  ☆14Jan 8, 2026Updated last month
• aquia-inc / scpkit

  View on GitHub
  SCP management tool
  ☆135Oct 23, 2023Updated 2 years ago
• vmisson / terraform-azure-firewall

  View on GitHub
  This project provide some Terraform modules to deploy Azure Firewall in an hub and spoke infrastructure.
  ☆13Aug 1, 2021Updated 4 years ago
• offensive-terraform / terraform-aws-ebs-snapshot-publicly-exposed

  View on GitHub
  Offensive Terraform module which copies publicly exposed EBS snapshot to us-east-1 region in attacker's AWS account and creates EBS volum…
  ☆14Sep 18, 2020Updated 5 years ago
• Blokje5 / terraform-deployment-pipeline

  View on GitHub
  Repository containing a set of policies for aws resources created with terraform
  ☆12Sep 16, 2019Updated 6 years ago
• clearvector / lambda-spy

  View on GitHub
  ☆35Jan 27, 2023Updated 3 years ago
• syne0 / osprey

  View on GitHub
  Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
  ☆17Dec 29, 2024Updated last year
• complytime / complyctl

  View on GitHub
  A command-line tool for streamlining end-to-end compliance workflows on local systems.
  ☆30Updated this week
• SecurityRunners / cloud-exposure-catalog

  View on GitHub
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆14Aug 30, 2024Updated last year
• chris-rock / testing-4-cloud

  View on GitHub
  Testing for the Cloud
  ☆19Jan 12, 2020Updated 6 years ago
• chlaplan / MDE-Monitoring-App

  View on GitHub
  Troubleshooting MDE Workstations
  ☆42Jan 7, 2026Updated last month
• mike-goodwin / aws-vault-reference-infrastructure

  View on GitHub
  An industrial strength, best practice reference architecture showing how to prevent credential sprawl with Vault on AWS
  ☆18Jun 18, 2017Updated 8 years ago
• akto-api-security / tests-library

  View on GitHub
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆41Feb 16, 2026Updated last week
• ramimac / breach-list-database

  View on GitHub
  A meta-database collecting resources that compile lists of breaches
  ☆21Oct 30, 2025Updated 3 months ago
• dharrisio / ansible-role-aws-cloudwatch-logs-agent

  View on GitHub
  Ansible role that installs the AWS CloudWatch Log Agent
  ☆16Aug 23, 2020Updated 5 years ago
• aws-samples / resource-control-policy-examples

  View on GitHub
  Example AWS Resource control policies to get started or mature your usage of AWS RCPs.
  ☆198Feb 2, 2026Updated 3 weeks ago
• datapipe / pipeline-as-code-example

  View on GitHub
  A simple example of Pipeline-as-code with Jenkins and Terraform
  ☆15Mar 31, 2017Updated 8 years ago
• hessman / gcert

  View on GitHub
  Retrieves information about a given domain from the Google Transparency Report : https://transparencyreport.google.com/https/certificates
  ☆20Dec 15, 2021Updated 4 years ago
• Cybr-Inc / fwdcloudsec-2025-summaries

  View on GitHub
  Summaries, transcripts, key points, and other useful insights from fwd:cloudsec 2025 talks for those of us who don't have time to watch e…
  ☆85Jul 4, 2025Updated 7 months ago
• alice-dot-io / caterpillar

  View on GitHub
  Caterpillar is a security scanning library for AI agent skill files (e.g., Claude Code skills) for dangerous or malicious behavior
  ☆32Feb 16, 2026Updated last week
• karimelmel / cloud-security-bootcamp

  View on GitHub
  ☆23May 22, 2023Updated 2 years ago
• securitytemplates / sectemplates

  View on GitHub
  Open source templates you can use to bootstrap your security programs
  ☆890Dec 28, 2025Updated 2 months ago
• kubenomicon / kubenomicon

  View on GitHub
  Offensive Kubernetes Threat Matrix -- kubenomicon.com
  ☆55Aug 12, 2025Updated 6 months ago
• Frichetten / aws-api-models

  View on GitHub
  A collection of documented and undocumented AWS API models
  ☆53Nov 21, 2025Updated 3 months ago
• SecurityRunners / CloudCommotion

  View on GitHub
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆145Jun 18, 2024Updated last year
• step-security / harden-runner

  View on GitHub
  Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…
  ☆966Updated this week
• harisec / orange-confusion-attacks

  View on GitHub
  Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
  ☆21Aug 25, 2024Updated last year
• PacktPublishing / Cybersecurity-Architects-Handbook

  View on GitHub
  Cybersecurity Architects Handbook, published by Packt
  ☆27Mar 27, 2024Updated last year
• eyalitki / presentations

  View on GitHub
  Collection of my slide decks, conference videos and research white papers
  ☆27Sep 23, 2025Updated 5 months ago
• secure-pipeline / jenkins-example

  View on GitHub
  A demonstration of a continuous integration pipeline focused on security testing
  ☆31Oct 5, 2018Updated 7 years ago
• ammarion / Take_Home_Exercise-

  View on GitHub
  ☆43Aug 27, 2025Updated 6 months ago
• Cyb3r-Monk / Microsoft-Vulnerable-Driver-Block-Lists

  View on GitHub
  Microsoft Vulnerable Driver Block Lists in CSV and JSON for SIEM lookups
  ☆53Sep 19, 2025Updated 5 months ago
• invictus-ir / Sigma-AWS

  View on GitHub
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆31Jul 12, 2023Updated 2 years ago
• sneakerhax / Prompts

  View on GitHub
  Red Team AI prompts
  ☆49Dec 2, 2025Updated 2 months ago
• CISOfy / lynis-docker

  View on GitHub
  Docker details and examples for the Lynis project
  ☆28Oct 16, 2016Updated 9 years ago