Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submissio…

The StackRox Kubernetes Security Platform performs a risk analysis of the container environment, delivers visibility and runtime alerts, and provides recommendations to proactively improve security…

Write tests against structured configuration data using the Open Policy Agent Rego query language

Ceph is a distributed object, block, and file storage platform

Open-Source Unified Vulnerability Management, DevSecOps & ASPM

Production-Grade Container Scheduling and Management

Cloud native networking and network security

Python cross-version bytecode library and disassembler

Concise, consistent, and legible badges in SVG and raster format

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

OSS-Fuzz - continuous fuzzing for open source software.

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

macOS system monitor in your menu bar

Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Backstage is an open framework for building developer portals

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Python Classes Without Boilerplate

Fast linters runner for Go

A book-in-progress about the Linux kernel and its insides.

A vulnerability scanner for container images and filesystems

Foundry is a blazing fast, portable and modular toolkit for Ethereum application development written in Rust.

Hunt down social media accounts by username across social networks

Community curated list of templates for the nuclei engine to find security vulnerabilities.

CLI tool for spawning and running containers according to the OCI specification

Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.

Distributed reliable key-value store for the most critical data of a distributed system

Application Kernel for Containers