Stars
Import and export tools for elasticsearch & opensearch
Retrieves the full-text of individual Web pages or entire RSS feeds - Unofficial Docker image for fivefilters' Full-Text RSS service
Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown
Tracking Protection update service for Firefox based on Safe Browsing protocol
Code style checking for GitHub's Ruby projects
Language-agnostic SLSA provenance generation for Github Actions
Verify provenance from SLSA compliant builders
Simple tool that allows you to detect imposter commits in GitHub Actions workflows.
Collection of example YARA-L rules for use within Google Security Operations
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
About gitlab-comment is a CLI command to post Merge Request Note.
Lightweight static analyzer for several programming languages
eBPF-based Security Observability and Runtime Enforcement
Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign
Darkfiles finds orphaned files in container images and makes them to bad deeds
Exposing phishing kits seen from phishunt.io
List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud, Oracle Cloud, IBM Cloud etc
A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
An open source, self-hosted implementation of the Tailscale control server
A Kubernetes operator to produce egress gateway Envoy pods and control access to them with network policies
CLI to integrate continuous fuzzing with Fuzzit (no longer available)