Official vendor's guide, docs, e-books, tips, hack around DevSecOps issues

Reusable GitHub Actions workflow examples for cloud native DevOps

Containerized—ROOTLESS—syslog-ng service that securely forwards system, firewall, and security logs to SentinelOne's Data Lake via HEC API. Optimized for performance, security, and enterprise deployment.

Automated, secure Docker pipeline with image scanning and cloud/K8s deployment.

Deploy Anchore Enterprise in an environment of your choice. Then follow through a series of labs that showcase how you can improve security across your software supply chain.

Repository for my website drawing on IaC with Terraform, CI/CD with GitHub Actions and other DevSecOps tools and principles such as dev containers, multiple environments (dev/staging/prod), secrets management, and cloud security.

End-to-end DevSecOps pipeline demo: Terraform, GitHub Actions, Checkov, Trivy, AWS

Package Docker Image for Implementing Continous Integration Security with SCA, SAST, and DAST in Go-Lang

Container image for Sysdig CLI Scanner

AI featured threat modeling and security review action

Curation of DevSecOps tools that all work together inside the minimum amount of containers. Just run make exec and read the How To!

A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.

Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.

GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file

Dockerfiles and Makefiles for various projects

Code repository for Mastering YAML pipelines Udemy course

🚀 A curated collection of essential learning materials and resources to help you master Docker, Docker Swarm, and Kubernetes in DevOps. Whether you're a beginner or an experienced professional, start your DevOps journey here.