Open Source Cloud Native Application Protection Platform (CNAPP)
created at Feb. 6, 2020, 10:30 a.m.
Security risk analysis for Kubernetes resources
created at May 8, 2018, 8:52 a.m.
a static analysis tool for finding vulnerabilities in C/C++ source code
created at Nov. 12, 2018, 5:23 p.m.
Memorable site for testing clients against bad SSL configs.
created at April 7, 2015, 10:37 p.m.
Securely manage passwords, certs, and other secrets in Chef
created at April 8, 2013, 6:05 p.m.
Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
created at Nov. 27, 2019, 8:55 a.m.
A command-line reference-implementation client for SSL Labs APIs, designed for automated and/or bulk testing.
created at Oct. 14, 2014, 10:10 a.m.
Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an output.
created at Nov. 6, 2019, 7:53 a.m.
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
created at Dec. 29, 2019, 6:30 a.m.
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
created at Oct. 22, 2013, 8:26 p.m.
Vulnerability Patterns Detector for C# and VB.NET
created at Dec. 31, 2017, 9:38 a.m.
Write tests against structured configuration data using the Open Policy Agent Rego query language
created at March 28, 2019, 5:12 p.m.
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
created at April 11, 2019, 1:01 a.m.
Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
created at April 25, 2020, 12:47 a.m.
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
created at March 27, 2020, 4:56 p.m.