A project security/vulnerability/risk scanning tool
created at March 18, 2017, 3:24 p.m.
Presentations, training modules, and other education materials from Duo Security's Application Security team.
created at Oct. 22, 2019, 4:40 p.m.
Discover internet-wide misconfigurations while drinking coffee
created at March 3, 2021, 6:47 p.m.
An enterprise friendly way of detecting and preventing secrets in code.
created at Dec. 5, 2017, 12:38 a.m.
preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.
created at April 29, 2021, 10:37 a.m.
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
created at Sept. 19, 2014, 2:53 p.m.
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
created at Oct. 1, 2021, 12:01 p.m.
Network egress filtering and runtime security for GitHub-hosted and self-hosted runners
created at Oct. 28, 2021, 4:58 p.m.