Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared …

Go 43,550 9,614 Updated Jan 15, 2025

Datalux / Osintgram

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Python 10,044 2,233 Updated Jul 6, 2024

TCM-Course-Resources / Open-Source-Intellingence-Resources

Compilation of Resources from TCM's OSINT Course

Shell 924 257 Updated May 2, 2024

juice-shop / juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

TypeScript 10,678 11,454 Updated Jan 15, 2025

digininja / DVWA

Damn Vulnerable Web Application (DVWA)

PHP 10,560 3,716 Updated Dec 12, 2024

juliocesarfort / public-pentesting-reports

A list of public penetration test reports published by several consulting firms and academic security groups.

HTML 8,619 1,979 Updated Jun 6, 2024

Bearer / bearer

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Go 2,144 115 Updated Jan 13, 2025

had-nu / threat-dragon

Forked from OWASP/threat-dragon

An open source threat modeling tool from OWASP

JavaScript 1 Updated Oct 12, 2023

had-nu / Automated-AppSec-Toolbox

This repository integrates tools for automated security testing within CI/CD pipelines, including SAST, DAST, IAST, and IaC. It enables early detection of vulnerabilities and compliance risks, mapp…

1 Updated Nov 18, 2024

had-nu / DependencyCheck

Forked from jeremylong/DependencyCheck

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

Java 1 Updated Jan 29, 2024

WebGoat / WebGoat

WebGoat is a deliberately insecure application

JavaScript 7,188 5,723 Updated Jan 14, 2025

OWASP / DevSecOpsGuideline

The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.

Python 869 196 Updated Jul 17, 2024

jassics / security-study-plan

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

4,465 551 Updated Dec 28, 2024

6mile / DevSecOps-Playbook

This is a step-by-step guide to implementing a DevSecOps program for any size organization

1,941 325 Updated Dec 21, 2024

sundowndev / phoneinfoga

Information gathering framework for phone numbers

Go 13,548 3,795 Updated Jun 30, 2024

PedroKetzer / roadmap-appsecbr

Junção de conteúdos, dicas e considerações da comunidade do Br de AppSec para divulgar a palavra do DevSecOps e orientar aspirantes que não se encaixam nem com Red e nem com Blue team

230 21 Updated Dec 9, 2024

arthurspk / guiadecybersecurity

Esse guia contém todas as informações necessárias para se introduzir na área de segurança da informação, dessa maneira, você encontrará, cursos, indicações de livros, roadmaps, playlists, certifica…

1,782 243 Updated Apr 12, 2024

had-nu / osintgpt

Forked from estebanpdl/osintgpt

An open-source intelligence (OSINT) analysis tool leveraging GPT-powered embeddings and vector search engines for efficient data processing

Python 1 Updated May 25, 2023

Python 1 Updated Feb 19, 2023

Neo23x0 / yarGen

yarGen is a generator for YARA rules

Python 1,586 283 Updated Jun 8, 2024

Neo23x0 / Loki

Loki - Simple IOC and YARA Scanner

Python 3,444 585 Updated Nov 25, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

André Ataíde had-nu

Block or report had-nu

Lists (1)

🔮 Future ideas

Stars

aeria-org / aeria

thewhiteh4t / pwnedOrNot

had-nu / containerized-poc-environment

maliceio / malice

hashicorp / terraform