A consolidated series of structured data for cloud identity and access management systems, including datasets for AWS, Azure, and Google Cloud

A next-generation crawling and spidering framework.

A sandbox environment designed for loading, running and profiling a wide range of files, including machine learning models, ELFs, Pickle, Javascript and more

✨ Securely connect to RDS, Elasticache, and other AWS resources in VPCs with no idle cost

An Open-Source JavaScript Implementation of Bionic Reading.

Halberd : Multi-Cloud Attack Platform

Slack enumeration and exposed secrets detection tool

ChatGPT for Cybersecurity Cookbook, published by Packt

An AWS tool to help you create a point in time assessment of your AWS account using Prowler.

List of changes announced for AWS that may break existing code

Demo of SSG using NextJS's App router

An OOB interaction gathering server and client library

An open project to list all publicly known cloud vulnerabilities and CSP security issues

OWASP Serverless Top 10

AWSGoat : A Damn Vulnerable AWS Infrastructure

Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

A monster cheatsheet on MITM attacks

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

This is a collection of some of mine mindmaps abount pentesting created with Obsidian.

The pattern matching swiss knife

🥑 Language focused docker images, minus the operating system.

Main package repository for production Wolfi images

build APKs from source code

Build OCI images from APK packages directly without Dockerfile

Code signing and transparency for containers and binaries

🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!