A comprehensive framework for analyzing and defending against attacks targeting Software Development Life Cycle Infrastructure.

A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.

This repository is a carefully chosen collection of cloud security-related interview questions and scenarios. This resource will help you explore different areas of safeguarding cloud systems, whet…

Protect against malicious code installed via npm, yarn, pnpm, npx, and pnpx with Aikido Safe Chain. Free to use, no tokens required.

Threat Designer is a GenerativeAI application designed to automate and streamline the threat modeling process for secure system design.

Check CDK applications for best practices using a combination of available rule packs

A log viewer for Kubernetes troubleshooting

A helper SDK to wrap the Google SecOps API for common security use cases

Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and so on

🌐 Make websites accessible for AI agents. Automate tasks online with ease.

Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages 🔥

Deploy Docusaurus to AWS S3 (Amazon Web Services S3)

Generate datasets of cloud audit logs for common attacks

Configure and deploy complete EKS clusters.

Opinionated, self-contained Terraform root modules that each solve one, specific problem

AWS IAM Permissions Guardrails https://aws-samples.github.io/aws-iam-permissions-guardrails/

Shared GitHub Actions for FerretDB repos

bpftop provides a dynamic real-time view of running eBPF programs. It displays the average runtime, events per second, and estimated total CPU % for each program.

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

Production-ready detection & response queries for osquery

POC demonstrating how to use AWS Bedrock with Golang

Serverless image generation with Amazon Bedrock and AWS Lambda

Collaborative forensic timeline analysis

SysFlow edge processing pipeline

Terraform CLI commands via Go.