Application Security Engineer Interview QuestionsSome of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
Stars: ✭ 267 (+14.1%)
awesome-policy-as-codeA curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
Stars: ✭ 121 (-48.29%)
PurifyAll-in-one tool for managing vulnerability reports from AppSec pipelines
Stars: ✭ 72 (-69.23%)
Awesome Threat ModellingA curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
Stars: ✭ 319 (+36.32%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (-20.09%)
Dependency TrackDependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Stars: ✭ 718 (+206.84%)
ReapsawReapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple programming languages.
Stars: ✭ 37 (-84.19%)
Njsscannjsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Stars: ✭ 128 (-45.3%)
Awesome DevsecopsCurating the best DevSecOps resources and tooling.
Stars: ✭ 188 (-19.66%)
WstgThe Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Stars: ✭ 3,873 (+1555.13%)
Kogito RuntimesKogito Runtimes - Kogito is a cloud-native business automation technology for building cloud-ready business applications.
Stars: ✭ 188 (-19.66%)
Flora workflow engine
Stars: ✭ 190 (-18.8%)
BitA tool for component-driven application development.
Stars: ✭ 14,443 (+6072.22%)
Git WorkflowThe git workflow for contributing to open source repositories.
Stars: ✭ 188 (-19.66%)
Awesome DevsecopsAn authoritative list of awesome devsecops tools with the help from community experiments and contributions.
Stars: ✭ 2,805 (+1098.72%)
Vue BlocksVue2 dataflow graph editor
Stars: ✭ 201 (-14.1%)
N8nFree and open fair-code licensed node based Workflow Automation Tool. Easily automate tasks across different services.
Stars: ✭ 19,252 (+8127.35%)
ApicheckThe DevSecOps toolset for REST APIs
Stars: ✭ 184 (-21.37%)
Bpe💠 BPE: Business Process Engine
Stars: ✭ 178 (-23.93%)
Bumped📦 Makes easy release software
Stars: ✭ 222 (-5.13%)
VersionpressGit-based version control for WordPress. Whoa!
Stars: ✭ 2,479 (+959.4%)
CuneiformCuneiform distributed programming language
Stars: ✭ 175 (-25.21%)
Workflow Guide📓 My workflow context and own code conventions
Stars: ✭ 174 (-25.64%)
Zap HudThe OWASP ZAP Heads Up Display (HUD)
Stars: ✭ 201 (-14.1%)
ViewflowReusable workflow library for Django
Stars: ✭ 2,136 (+812.82%)
PlynxPLynx is a domain agnostic platform for managing reproducible experiments and data-oriented workflows.
Stars: ✭ 192 (-17.95%)
WhispersIdentify hardcoded secrets and dangerous behaviours
Stars: ✭ 66 (-71.79%)
WexflowAn easy and fast way to build automation and workflows on Windows, Linux, macOS, and the cloud.
Stars: ✭ 2,435 (+940.6%)
Litegraph.jsA graph node engine and editor written in Javascript similar to PD or UDK Blueprints, comes with its own editor in HTML5 Canvas2D. The engine can run client side or server side using Node. It allows to export graphs as JSONs to be included in applications independently.
Stars: ✭ 2,735 (+1068.8%)
Rnaseq WorkflowA repository for setting up a RNAseq workflow
Stars: ✭ 170 (-27.35%)
Tmt WorkflowA web developer workflow used by WeChat team based on Gulp, with cross-platform supported and solutions prepared.
Stars: ✭ 2,167 (+826.07%)
SuitecrmSuiteCRM - Open source CRM for the world
Stars: ✭ 2,770 (+1083.76%)
Wflow🐆 EXPERIMENTAL -- Runs GitHub Actions workflows locally (local) -- Don't run your YAML like a 🐪
Stars: ✭ 187 (-20.09%)
Git OctopusThe continuous merge workflow
Stars: ✭ 202 (-13.68%)
BlisqyVersion 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
Stars: ✭ 179 (-23.5%)
PalletsSimple and reliable workflow engine, written in Ruby
Stars: ✭ 216 (-7.69%)
YawastYAWAST ...where a pentest starts. Security Toolkit for Web-based Applications
Stars: ✭ 181 (-22.65%)
EndlyEnd to end functional test and automation framework
Stars: ✭ 178 (-23.93%)
ChopchopChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
Stars: ✭ 227 (-2.99%)
Reaflow🕸 Node-based Visualizations for React
Stars: ✭ 199 (-14.96%)
ThreatplaybookA unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
Stars: ✭ 173 (-26.07%)
KicsFind security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Stars: ✭ 189 (-19.23%)
Add And CommitAdd & commit files from a path directly from GitHub Actions
Stars: ✭ 198 (-15.38%)
SchedulisSchedulis is a high performance workflow task scheduling system that supports high availability and multi-tenant financial level features, Linkis computing middleware, and has been integrated into data application development portal DataSphere Studio
Stars: ✭ 222 (-5.13%)
Workflow core[Deprecated, use flor_core instead] A Rails engine which providing essential infrastructure of workflow. It's based on Workflow Nets.
Stars: ✭ 171 (-26.92%)
Alfred WorkflowFull-featured library for writing Alfred 3 & 4 workflows
Stars: ✭ 2,622 (+1020.51%)
Ibm Z ZosThe helpful and handy location for finding and sharing z/OS files, which are not included in the product.
Stars: ✭ 198 (-15.38%)
Devsecops🔱 Collection and Roadmap for everyone who wants DevSecOps.
Stars: ✭ 171 (-26.92%)
Baumeister👷 The aim of this project is to help you to build your things. From Bootstrap themes over static websites to single page applications.
Stars: ✭ 171 (-26.92%)
Zeebe ModelerDesktop Application for modeling Zeebe Workflows with BPMN
Stars: ✭ 198 (-15.38%)
Travis Ci Latex PdfTravis CI and deployment service to build PDF from LaTeX document.
Stars: ✭ 170 (-27.35%)
Community.activitiesRepository of Windows Workflow Foundation Activities for UiPath Community
Stars: ✭ 170 (-27.35%)
PipelineNode-based automation server
Stars: ✭ 212 (-9.4%)
ContainersshContainerSSH: Launch containers on demand
Stars: ✭ 195 (-16.67%)