CheckovPrevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
Stars: ✭ 3,572 (+1800%)
Opsdroid🤖 An open source chat-ops bot framework
Stars: ✭ 563 (+199.47%)
FaradayFaraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+1601.06%)
Juice Shop CtfCapture-the-Flag (CTF) environment setup tools for OWASP Juice Shop
Stars: ✭ 238 (+26.6%)
Application Security Engineer Interview QuestionsSome of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
Stars: ✭ 267 (+42.02%)
Devops GuideDevOps Guide - Development to Production all configurations with basic notes to debug efficiently.
Stars: ✭ 4,119 (+2090.96%)
TsuruOpen source and extensible Platform as a Service (PaaS).
Stars: ✭ 3,761 (+1900.53%)
DevsecopsThis repository contains information about DevSecOps and how to get involved in this community effort.
Stars: ✭ 103 (-45.21%)
Secrethub GoGo client library for the SecretHub Secrets Management API
Stars: ✭ 50 (-73.4%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (-0.53%)
TfsecSecurity scanner for your Terraform code
Stars: ✭ 3,622 (+1826.6%)
ErrbotErrbot is a chatbot, a daemon that connects to your favorite chat service and bring your tools and some fun into the conversation.
Stars: ✭ 2,605 (+1285.64%)
ForemastSpinnaker Pipeline/Infrastructure Configuration and Templating Tool - Pipelines as Code.
Stars: ✭ 263 (+39.89%)
JenkinsJenkins automation server
Stars: ✭ 18,225 (+9594.15%)
AtlantisTerraform Pull Request Automation
Stars: ✭ 4,236 (+2153.19%)
Juice ShopOWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Stars: ✭ 6,270 (+3235.11%)
SecurecodeboxsecureCodeBox (SCB) - continuous secure delivery out of the box
Stars: ✭ 279 (+48.4%)
SentrySentry is cross-platform application monitoring, with a focus on error reporting.
Stars: ✭ 29,700 (+15697.87%)
ApicheckThe DevSecOps toolset for REST APIs
Stars: ✭ 184 (-2.13%)
SceptreBuild better AWS infrastructure
Stars: ✭ 1,160 (+517.02%)
Promster⏰A Prometheus exporter for Hapi, express and Marble.js servers to automatically measure request timings 📊
Stars: ✭ 146 (-22.34%)
Inertia✈️ Effortless, self-hosted continuous deployment for small teams and projects
Stars: ✭ 133 (-29.26%)
Mobile.buildtoolsThe Mobile.BuildTools makes it easier to develop code bases in a clean, consistent, secure, and configurable way. Determine at Build which environment your app needs to run on, and what Client Secrets it should have. Plus many more amazing features!
Stars: ✭ 162 (-13.83%)
Bookmarks🔖 +4.3K awesome resources for geeks and software crafters 🍺
Stars: ✭ 210 (+11.7%)
ResourcesThis repo is a one stop destination to find resources for learning various domains. You can find the roadmap for any domain here.
Stars: ✭ 198 (+5.32%)
LiquibaseMain Liquibase Source
Stars: ✭ 2,910 (+1447.87%)
vimana-frameworkVimana is an experimental security framework that aims to provide resources for auditing Python web applications.
Stars: ✭ 47 (-75%)
kdtCLI to interact with Kondukto
Stars: ✭ 18 (-90.43%)
TakeoffA rapid development environment using docker for convenience.
Stars: ✭ 271 (+44.15%)
Gg Shield ActionGitGuardian Shield GitHub Action - Find exposed credentials in your commits
Stars: ✭ 248 (+31.91%)
CdsEnterprise-Grade Continuous Delivery & DevOps Automation Open Source Platform
Stars: ✭ 3,677 (+1855.85%)
UnleashUnleash is the open source feature toggle service.
Stars: ✭ 4,679 (+2388.83%)
LauncherOsquery launcher, autoupdater, and packager
Stars: ✭ 346 (+84.04%)
My LinksKnowledge seeks no man
Stars: ✭ 311 (+65.43%)
ThreatmapperIdentify vulnerabilities in running containers, images, hosts and repositories
Stars: ✭ 361 (+92.02%)
Kube Scankube-scan: Octarine k8s cluster risk assessment tool
Stars: ✭ 566 (+201.06%)
Awesome DevsecopsAn authoritative list of awesome devsecops tools with the help from community experiments and contributions.
Stars: ✭ 2,805 (+1392.02%)
TrivyScanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Stars: ✭ 9,673 (+5045.21%)
OpenebsLeading Open Source Container Attached Storage, built using Cloud Native Architecture, simplifies running Stateful Applications on Kubernetes.
Stars: ✭ 7,277 (+3770.74%)
WatchtowerA process for automating Docker container base image updates.
Stars: ✭ 9,526 (+4967.02%)
ChefChef Infra, a powerful automation platform that transforms infrastructure into code automating how infrastructure is configured, deployed and managed across any environment, at any scale
Stars: ✭ 6,766 (+3498.94%)
GomplateA flexible commandline tool for template rendering. Supports lots of local and remote datasources.
Stars: ✭ 1,270 (+575.53%)
Monday⚡️ A dev tool for microservice developers to run local applications and/or forward others from/to Kubernetes SSH or TCP
Stars: ✭ 1,246 (+562.77%)
TerrascanDetect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Stars: ✭ 2,687 (+1329.26%)
Go CarbonGolang implementation of Graphite/Carbon server with classic architecture: Agent -> Cache -> Persister
Stars: ✭ 713 (+279.26%)
ArcherysecCentralize Vulnerability Assessment and Management for DevSecOps Team
Stars: ✭ 1,802 (+858.51%)
Django DefectdojoDefectDojo is an open-source application vulnerability correlation and security orchestration tool.
Stars: ✭ 1,926 (+924.47%)
AbbreviateSupporting your devops by shortening your strings using common abbreviations and clever guesswork
Stars: ✭ 160 (-14.89%)
GiteaGit with a cup of tea, painless self-hosted git service
Stars: ✭ 27,320 (+14431.91%)
Config LintCommand line tool to validate configuration files
Stars: ✭ 118 (-37.23%)
Devsecops🔱 Collection and Roadmap for everyone who wants DevSecOps.
Stars: ✭ 171 (-9.04%)
ThreatplaybookA unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
Stars: ✭ 173 (-7.98%)
Wgcloudlinux运维监控工具,支持系统信息,内存,cpu,温度,磁盘空间及IO,硬盘smart,系统负载,网络流量等监控,API接口,大屏展示,拓扑图,进程监控,端口监控,docker监控,文件防篡改,日志监控,数据可视化,web ssh,堡垒机,指令下发批量执行,linux面板,探针,故障告警
Stars: ✭ 2,669 (+1319.68%)
Macos Egpu Cuda GuideSet up CUDA for machine learning (and gaming) on macOS using a NVIDIA eGPU
Stars: ✭ 187 (-0.53%)