Alternatives and similar repositories for github-actions-security-analysis:

Users that are interested in github-actions-security-analysis are comparing it to the libraries listed below

• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆21Updated last year
• nccgroup / RFC-Security-Research
  Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…
  ☆18Updated 3 years ago
• JupiterOne-Archives / j1nuclei
  ☆14Updated last year
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated last year
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated last month
• AnubisSec / GroovyWaiter
  ☆17Updated 2 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆22Updated 6 months ago
• cedowens / Helpful_aws-scripts
  python3 scripts to help with aws triage needs
  ☆15Updated 2 years ago
• lightspin-tech / red-bucket-gcp
  ☆10Updated 2 years ago
• nccgroup / cowcloud
  ☆58Updated last year
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆16Updated 7 months ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆51Updated 2 years ago
• sebastian-mora / awsssome_phish
  AWS SSO serverless phishing API.
  ☆31Updated 3 years ago
• alt3kx / wafparan01d3
  Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool
  ☆25Updated 3 years ago
• BishopFox / awsservicemap
  Go module that returns supported regions for a service or supported services for a region
  ☆15Updated 7 months ago
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆29Updated 3 months ago
• hac01 / gcp-iam-brute
  ☆39Updated 7 months ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆49Updated 3 years ago
• carlospolop / bf-aws-perms-simulate
  ☆17Updated 11 months ago
• denniskniep / interactsh_deploy
  Interactsh deployment to AWS EC2 Instance with Terraform
  ☆11Updated 3 years ago
• PortSwigger / paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆32Updated 2 years ago
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆47Updated 3 months ago
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆18Updated 2 months ago
• PortSwigger / attack-surface-detector
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆14Updated 2 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆27Updated 10 months ago
• messypoutine / gravy-overflow
  A GitHub Actions Supply Chain CTF / Goat
  ☆17Updated last month
• Permiso-io-tools / SkyScalpel
  ☆30Updated 2 months ago