Main Sigma Rule Repository

A CI/CD Red Team Framework for demonstrating Build Pipeline security risks.

Distributed, lock-free, self-hosted health checks and status pages

Protect against malicious code installed via npm, yarn, pnpm, npx, pnpx, pip, uv and poetry with Aikido Safe Chain. Free to use, no tokens required.

Customize your git commit hashes!

Simple and flexible tool for managing secrets

nono - a capability-based, multiplexing sandbox tool, built for developers - lift'n'shift seamless path to prod. Run agents securely without needing any additional infra, zero setup, zero latency.

Nix Packages collection & NixOS

bagel, a CLI that inventories security-relevant metadata on developer workstations

CLI that provides on-demand secrets access for common DevOps tools

🔎 Static code analysis engine to find security issues in code.

Software sandbox for storage of sensitive information in memory.

A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.

Style and Grammar Checker for 25+ Languages

the LLM vulnerability scanner

🐍 🔍 GuardDog is a CLI tool to Identify malicious PyPI and npm packages

gnark is a fast zk-SNARK library that offers a high-level API to design circuits. The library is open source and developed under the Apache 2.0 license

The SPIFFE Runtime Environment

This JavaScript CLI "undeletes' packages that have been removed from the NPM registry

A WebAuthn/U2F token protected by a TPM (Go/Linux)

💻 🔑 ssh-agent for TPMs

Find, validate, and map the impact of leaked secrets across your stack. Revoke fast. 900+ rules.

Got a GitHub token (PAT, App, OAuth) and want to figure out what permissions it has? This repo solves this by allowing you to test and validate the different types of GitHub token..

An open-source, code-first Go toolkit for building, evaluating, and deploying sophisticated AI agents with flexibility and control.

Disk Usage/Free Utility - a better 'df' alternative

draw.io is a JavaScript, client-side editor for general diagramming.

Welcome to the "Secure Pipeline" workshop! This hands-on workshop teaches you how to build a comprehensive security-focused CI/CD pipeline with multiple layers of security scanning and best practices.

A command line interface for Amazon EBS snapshots

A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where we scanned 20k+ public AMIs.