Alternatives and similar repositories for dotfiles

Users that are interested in dotfiles are comparing it to the libraries listed below

• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆42Updated 2 years ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 9 months ago
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆19Updated 4 years ago
• salesforce / lobster-pot
  Scans every git push to your Github organisations to find unwanted secrets.
  ☆87Updated 7 months ago
• DataDog / attache
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆60Updated last year
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated 8 months ago
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆22Updated 2 years ago
• latacora / remediate-AWS-IMDSv1
  Simple tool to identify and remediate the use of the AWS EC2 IMDSv1.
  ☆15Updated 4 years ago
• talbeerysec / STS-token-decoder
  AWS STS token decoder
  ☆44Updated 9 months ago
• 4ARMED / dopwn
  Tool to automate takeover of DigitalOcean Kubernetes cluster. Check out the blog post for more info.
  ☆17Updated 7 years ago
• PaloAltoNetworks / github-oidc-utils
  ☆37Updated 7 months ago
• SecureStackCo / actions-sbom
  A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, sta…
  ☆25Updated 2 years ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• tstromberg / supplychain-attack-data
  Data about all known supply-chain attacks through history
  ☆62Updated 6 months ago
• 0xdabbad00 / security_incidents_from_caching
  Collection of incidents resulting from caching issues
  ☆29Updated 6 months ago
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆121Updated 2 years ago
• RichardoC / gitlab-secrets
  This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…
  ☆47Updated last year
• TinderSec / gh-workflow-auditor
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆156Updated last year
• doyensec / safeurl
  A Server Side Request Forgery (SSRF) protection library. Made with 🖤 by Doyensec LLC.
  ☆110Updated 6 months ago
• nccgroup / ccs
  ☆114Updated 2 years ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆15Updated 2 years ago
• antitree / go-pillage-registries
  Pentester-focused Docker registry tool to enumerate and pull images
  ☆37Updated 2 months ago
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆34Updated 7 months ago
• in-toto / supply-chain-compromises
  ☆22Updated 4 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆94Updated last year
• hotnops / AWSRoleJuggler
  A toolset to juggle AWS roles for persistent access
  ☆59Updated last year
• chainguard-dev / justtrustme
  ☆57Updated this week
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated 2 years ago
• antitree / seccomp-diff
  ☆85Updated last month
• projectdiscovery / naabu-action
  A fast port scanner written in go with a focus on reliability and simplicity.
  ☆20Updated last year