Stars
Create custom auto-remediation solutions using serverless functions in the cloud.
jessfraz / syzkaller
Forked from google/syzkallersyzkaller is an unsupervised, coverage-guided Linux system call fuzzer
Build and deploy Sockshop application using Flagger + Flux
Container image with malware and crypto miner for testing purposes
Vulnerabilities in popular container images
Huma REST/HTTP API Framework for Golang with OpenAPI 3.1
Simple, scalable and secure application segmentation
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
Obtain GraphQL API schema even if the introspection is disabled
Linux OS for Azure 1P services and edge appliances
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API security risks.
mbrg / restler-fuzzer
Forked from microsoft/restler-fuzzerRESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security and reliability bugs in these services.
PoC for gaining persistency on vulnerable Lambdas
mbrg / dontgo403
Forked from devploit/nomore403Tool to bypass 40X response codes.
An offensive security toolset for Microsoft 365 focused on Microsoft Copilot, Copilot Studio and Power Platform
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
API Security Project aims to present unique attack & defense methods in API Security field
The Cartografos working group aims to provide tools to help adopters and end-users to navigate the CNCF landscape and the wider cloud native ecosystem.
Compliant Financial Infrastructure accelerates the development, deployment and adoption of cloud services in a way that adheres to common security and regulatory controls.
💰💸☁️ For those interested in running Kubernetes in highly regulated environments, particularly financial services
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!