ik-security

All

94 repositories

learn-vault-secrets-operator-fork
Public
Mozilla Public License 2.0
•10•0•0•0•Updated Jul 26, 2024Jul 26, 2024
spicedb
Public
Open Source, Google Zanzibar-inspired permissions database to enable fine-grained authorization for customer applications
Go
•
Apache License 2.0
•281•0•0•0•Updated Jul 7, 2024Jul 7, 2024
SecLists-fork
Public
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
PHP
•
MIT License
•24k•0•0•0•Updated Apr 27, 2024Apr 27, 2024
GTFOBins.github.io-fork
Public
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
HTML
•
GNU General Public License v3.0
•1.3k•0•0•0•Updated Apr 8, 2024Apr 8, 2024
PEASS-ng-fork
Public
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
C#
•
Other
•3.1k•0•0•0•Updated Apr 8, 2024Apr 8, 2024
PayloadsAllTheThings-fork
Public
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Python
•
MIT License
•15k•0•0•0•Updated Apr 6, 2024Apr 6, 2024
bane
Public
Custom & better AppArmor profile generator for Docker containers.
Go
•
MIT License
•84•1•0•0•Updated Apr 5, 2024Apr 5, 2024
juice-shop-fork
Public
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
TypeScript
•
MIT License
•11k•0•0•0•Updated Apr 5, 2024Apr 5, 2024
thc-hydra-fork
Public
hydra
C
•
GNU Affero General Public License v3.0
•2k•0•0•0•Updated Apr 1, 2024Apr 1, 2024
trivy
Public
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Go
•
Apache License 2.0
•2.3k•0•0•0•Updated Mar 23, 2024Mar 23, 2024
trivy-policies
Public
Go
•
MIT License
•30•0•0•0•Updated Mar 20, 2024Mar 20, 2024
WhatWeb-fork
Public
Next generation web scanner
Ruby
•
GNU General Public License v2.0
•909•0•0•0•Updated Jan 8, 2024Jan 8, 2024
sidecred-fork
Public
Automated lifecycle management for credentials
Go
•
MIT License
•10•0•0•0•Updated Oct 11, 2023Oct 11, 2023
bank-vaults-fork
Public
A Vault swiss-army knife: A CLI tool to init, unseal and configure Vault (auth methods, secret engines).
Go
•
Apache License 2.0
•469•0•0•0•Updated Sep 11, 2023Sep 11, 2023
LinEnum-fork
Public
Scripted Local Linux Enumeration & Privilege Escalation Checks
Shell
•
MIT License
•2k•0•0•0•Updated Sep 6, 2023Sep 6, 2023
nishang-fork
Public
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
PowerShell
•
Other
•2.5k•0•0•0•Updated Sep 5, 2023Sep 5, 2023
dast-operator
Public
Dynamic Application and API Security Testing
Go
•
Apache License 2.0
•27•0•0•0•Updated Apr 5, 2023Apr 5, 2023
learn-vault-agent
Public
Learn tutorial assets related to Vault Agent
HCL
•8•0•0•0•Updated Oct 12, 2022Oct 12, 2022
prowler
Public
AWS Security Best Practices Assessment, Auditing, Hardening and Forensics Readiness Tool. It follows guidelines of the CIS Amazon Web Services Foundations Benchmark and DOZENS of additional checks including GDPR and HIPAA (+90). Official CIS for AWS guide: https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf
Shell
•
Apache License 2.0
•1.5k•2•0•0•Updated Sep 27, 2022Sep 27, 2022
my-arsenal-of-aws-security-tools
Public
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Shell
•
Apache License 2.0
•1.5k•0•0•0•Updated Sep 23, 2022Sep 23, 2022
PMapper
Public
A tool for quickly evaluating IAM permissions in AWS.
Python
•
GNU Affero General Public License v3.0
•170•0•0•0•Updated Sep 5, 2022Sep 5, 2022
oisru
Public
Repository for the Open Information Security Risk Universe
Shell
•
Creative Commons Zero v1.0 Universal
•10•0•0•0•Updated Jul 10, 2022Jul 10, 2022
blueprint-securesoftwarepipeline
Public
For engineers and security teams driving fast and secure software supply chains
Apache License 2.0
•22•0•0•0•Updated Apr 15, 2022Apr 15, 2022
SkyArk
Public
SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
PowerShell
•
MIT License
•162•0•0•0•Updated Feb 13, 2022Feb 13, 2022
ElectricEye
Public
Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
Python
•
GNU General Public License v3.0
•126•0•0•0•Updated May 14, 2021May 14, 2021
pacbot
Public
PacBot (Policy as Code Bot)
Java
•
Apache License 2.0
•277•0•0•0•Updated Apr 26, 2021Apr 26, 2021
cloudcustodian-policies
Public
Cloud Custodian policy that logs unused security groups
Jinja
•
MIT License
•77•0•0•0•Updated Apr 18, 2021Apr 18, 2021
awesome-pentest
Public
A collection of awesome penetration testing resources, tools and other shiny things
4.5k•0•0•0•Updated Mar 27, 2021Mar 27, 2021
aws-inventory
Public
Discover resources created in an AWS account.
Python
•
Apache License 2.0
•129•0•0•0•Updated Feb 7, 2021Feb 7, 2021
manheim-c7n-tools
Public
Manheim's Cloud Custodian (c7n) wrapper package, policy generator, runner, and supporting tools.
Python
•
Apache License 2.0
•25•0•0•0•Updated Jan 13, 2021Jan 13, 2021