Presentations, training modules, and other education materials from Duo Security's Application Security team.
updated at Nov. 29, 2023, 5:43 p.m.
Securely manage passwords, certs, and other secrets in Chef
updated at Dec. 23, 2023, 3:02 p.m.
Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an output.
updated at May 3, 2024, 9:32 p.m.
Scan your code for security misconfiguration, search for passwords and secrets.
updated at May 5, 2024, 6:14 a.m.
preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.
updated at May 9, 2024, 7:19 a.m.
Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.
updated at May 10, 2024, 2:38 p.m.
A project security/vulnerability/risk scanning tool
updated at May 14, 2024, 7:34 p.m.
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
updated at May 19, 2024, 9 a.m.
Discover internet-wide misconfigurations while drinking coffee
updated at May 20, 2024, 4:24 a.m.
a static analysis tool for finding vulnerabilities in C/C++ source code
updated at May 22, 2024, 12:55 a.m.
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
updated at May 22, 2024, 8:05 a.m.
A command-line reference-implementation client for SSL Labs APIs, designed for automated and/or bulk testing.
updated at May 22, 2024, 12:34 p.m.
Security risk analysis for Kubernetes resources
updated at May 23, 2024, 1:19 p.m.