A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
-
Updated
Apr 9, 2024 - Dockerfile
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
Open Source Static Scanning tool to detect data flows in your code, find data security vulnerabilities & generate accurate Play Store Data Safety Report.
Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.
Docker image to exploit RCE, try for pentest methods and test container security solutions (trivy, falco and etc.)
Reusable GitHub Actions workflow examples for cloud native DevOps
AI featured threat modeling and security review action
Contrast Security Instrumentation for Dockerized Webgoat, with lab instructions.
Code repository for Mastering YAML pipelines Udemy course
It's a Horusec Action proof of concept
GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
Basic simple integration around falco and wazuh into k8s cluster with daemonset deployment.
Dockerized version of security-checker
CloudGuard SHIFTLEFT integration with CICD pipeline on AWS
Exercise files associated with the course DevSecOps: Automated Security Testing with James Wickett from LinkedIn Learning.
Dockerized version of PHPCS-Security-Audit
🚀 A curated collection of essential learning materials and resources to help you master Docker, Docker Swarm, and Kubernetes in DevOps. Whether you're a beginner or an experienced professional, start your DevOps journey here.
Add a description, image, and links to the devsecops topic page so that developers can more easily learn about it.
To associate your repository with the devsecops topic, visit your repo's landing page and select "manage topics."