Learn how to design large-scale systems. Prep for the system design interview. Includes Anki flashcards.

Set up a modern web app by running one command.

Material UI: Comprehensive React component library that implements Google's Material Design. Free forever.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

The best way to write secure and reliable applications. Write nothing; deploy nowhere.

Easy to maintain open source documentation websites.

The lazier way to manage everything docker

A Commander for modern Go CLI interactions

🎨 Diagram as Code for prototyping cloud system architectures

ShellCheck, a static analysis tool for shell scripts

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Structured, pluggable logging for Go.

Find secrets with Gitleaks 🔑

Find, verify, and analyze leaked credentials

Roadmap to becoming a Go developer in 2020

The Uber Go Style Guide.

Internet-scale OpenID Certified™ OpenID Connect and OAuth2.1 provider that integrates with your user management through headless APIs. Solve OIDC/OAuth2 user cases over night. Consume as a service …

A static analyzer for Java, C, C++, and Objective-C

🚦 Cachet, the open-source, self-hosted status page system.

⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.

Prevents you from committing secrets and credentials into git repositories

The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

Go library for accessing the GitHub v3 API

Vulnerability Static Analysis for Containers

Continuous Inspection

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a rang…

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

A vault for securely storing and accessing AWS credentials in development environments