Customize your git commit hashes!

Google's Security extension for the Gemini CLI that finds vulnerabilities in your code changes and pull requests.

Linux, Jenkins, AWS, SRE, Prometheus, Docker, Python, Ansible, Git, Kubernetes, Terraform, OpenStack, SQL, NoSQL, Azure, GCP, DNS, Elastic, Network, Virtualization. DevOps Interview Questions

gRPC Goat is a "Vulnerable by Design" lab created to provide an interactive, hands-on playground for learning and practicing gRPC security.

Proof of Concepts for malicious maintainers: How to Tamper with Releases built with GitHub Actions Worfklows, presented at fwd:cloudsec Europe 2025

🧠 Cognitive load is what matters

a security scanner for custom LLM applications

FULL Augment Code, Claude Code, Cluely, CodeBuddy, Comet, Cursor, Devin AI, Junie, Kiro, Leap.new, Lovable, Manus, NotionAI, Orchids.app, Perplexity, Poke, Qoder, Replit, Same.dev, Trae, Traycer AI…

MCP Monitoring with eBPF

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.

how to look for Leaked Credentials !

Minimal examples of data structures and algorithms in Python

🎆Interactive Online Platform that Visualizes Algorithms from Code

Full stack, modern web application template. Using FastAPI, React, SQLModel, PostgreSQL, Docker, GitHub Actions, automatic HTTPS and more.

Secure, cross-platform Git credential storage with authentication to GitHub, Azure Repos, and other popular Git hosting services.

A curated list of engineering blogs

GitHub Actions Pipeline Enumeration and Attack Tool

Collection of methodology and test case for various web vulnerabilities.

A list of cheat sheets for application security

How GitHub Actions workflows can be hacked

Hide promoted jobs and companies on LinkedIn, Indeed, and Glassdoor.

The OpenTF Manifesto expresses concern over HashiCorp's switch of the Terraform license from open-source to the Business Source License (BSL) and calls for the tool's return to a truly open-source …

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

📱 objection - runtime mobile exploration

A security focused static analysis tool for Android and Java applications.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…