Promise based HTTP client for the browser and node.js

An AI-powered security review GitHub Action using Claude to analyze code changes for security vulnerabilities.

Hello AI World guide to deploying deep-learning inference networks and deep vision primitives with TensorRT and NVIDIA Jetson.

A tightly integrated ChatGPT plugin for Logseq.

ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring supporting 100s of services and evaluations to harden your CSP…

Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini

Share, discover, and collect prompts from the community. Free and open source — self-host for your organization with complete privacy.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Scanning APK file for URIs, endpoints & secrets.

one-click face swap

A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Linting tool for CloudFormation templates

Sleep despite annoying clamshell mode

💻 A fully functional local AWS cloud stack. Develop and test your cloud & Serverless apps offline

The Multi-team Software Delivery Assessment is a simple, easy-to-execute approach to assessing software delivery across many different teams within an organisation.

🥑 Language focused docker images, minus the operating system.

VS Code extension that allows you to record and play back guided tours of codebases, directly within the editor.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

completely ridiculous API (crAPI)

A python script that finds endpoints in JavaScript files

A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.

A command-line tool to get valuable information out of AWS CloudTrail

A colour-coded radar chart to keep track of technologies in use, whether they are being evaluated, adopted or phased out.

This is the public roadmap for AWS container services (ECS, ECR, Fargate, and EKS).

Tools and sample code provided by AWS Premium Support.

A collection of useful CloudFormation templates

Security Documentation Builder

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into product…

The AWS Provider enables Terraform to manage AWS resources.