Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
updated at May 25, 2024, 11:53 a.m.
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
updated at May 25, 2024, 8:44 a.m.
Vulnerability Patterns Detector for C# and VB.NET
updated at May 25, 2024, 12:23 a.m.
Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
updated at May 24, 2024, 11:39 p.m.
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
updated at May 24, 2024, 11:38 p.m.
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
updated at May 24, 2024, 11:01 p.m.
Vulnerable app with examples showing how to not use secrets
updated at May 24, 2024, 11 p.m.
Prevents you from committing secrets and credentials into git repositories
updated at May 24, 2024, 7:31 p.m.
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
updated at May 24, 2024, 5:53 p.m.
Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.
updated at May 24, 2024, 4:36 p.m.
ansible-lint checks playbooks for practices and behavior that could potentially be improved and can fix some of the most common ones for you
updated at May 24, 2024, 10:52 a.m.