A tool for exploring each layer in a docker image

Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

👻 Ghostty is a fast, feature-rich, and cross-platform terminal emulator that uses platform-native UI and GPU acceleration.

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities.

Curating the best DevSecOps resources and tooling.

A repository for MLSecOps and DevSecOps research and more!

Cybersecurity AI (CAI), the framework for AI Security

Native macOS app for finding and killing processes on open ports. Perfect for developers.

Bare minimum AWS Security Alerting and Secure by default Configuration

Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powered by a Neo4j database.

Like Vercel, but open source and for all languages.

Summaries, transcripts, key points, and other useful insights from fwd:cloudsec 2025 talks for those of us who don't have time to watch every presentation!

The Arcanum Prompt Injection Taxonomy

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

Monitor your websites, showcase status including daily history, and get Slack/Telegram/Discord notification whenever your website status changes. Using Cloudflare Workers, CRON Triggers, and KV sto…

Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Pers…

A curated list of free courses with certifications. Also available at https://free-certifications.com/

A collection of documented and undocumented AWS API models

AI / LLM Red Team Field Manual & Consultant’s Handbook

All the deals for InfoSec related software/tools this Black Friday

8 Week course to transition from Web/API/Cloud Hacker to AI Red Team

微舆：人人可用的多Agent舆情分析助手，打破信息茧房，还原舆情原貌，预测未来走向，辅助决策！从0实现，不依赖任何框架。

A comprehensive tool for monitoring, analyzing, and reporting Cloudflare security events across multiple zones with S3 storage and Slack notifications

The complete load testing platform. Everything you need for production-grade load tests. Serverless & distributed. Load test with Playwright. Load test HTTP APIs, GraphQL, WebSocket, and more. Use …

The leading data integration platform for ETL / ELT data pipelines from APIs, databases & files to data warehouses, data lakes & data lakehouses. Both self-hosted and Cloud-hosted.

🛍️ Typescript E-commerce Platform

GitHub Actions Pipeline Enumeration and Attack Tool

Linux Runtime Security and Forensics using eBPF