🛠️ Automate Stripe checkout form testing with SAF, featuring card generation, address management, and IP geolocation for efficient and accurate transactions.

Local-first browser-based security tools for developers and defenders. No backend, no data sent anywhere.

Landscape of technologies and concepts for DevOps and its related fields, with their history; A mirror of https://gitlab.com/jimyoshida/dx-devops-landscape

Website, courses, documentation, blog and youtube video tracker.

Autonomous “Shai-Hulud” engine that ingests malicious NPM package advisories from OSV, tracks versions and metadata, and maintains a continuously updated threat intelligence database.

secureCodeBox (SCB) - continuous secure delivery out of the box

⚙️ Scan your Go, Java, Kotlin, PHP, Python, JavaScript, TypeScript, .NET projects at GitHub with Qodana. This repository contains Qodana for Azure, GitHub, CircleCI and Gradle

A complete Hotstar-clone React app integrated with a secure DevSecOps CI/CD pipeline using Jenkins, Docker, SonarQube, OWASP ZAP, Terraform, and AWS EKS.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Repository contains Node.js code using Express library to make Backend app for DevOps flow demo.

Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded

AI-assisted SOC dashboard for threat detection and LLM-generated analyst summaries.

A complete DevSecOps CI/CD pipeline demonstration using GitHub Actions with automated testing, security scanning (Semgrep & Trivy), code quality checks, and Docker image build/push to Docker Hub.

World-class security standard for npm packages. Automated threat detection, supply chain analysis, and 0-100 security scores. Because in 2025, we can do better than the Wild West

This repository hosts the Azure Tech Blog, authored by Microsoft Korea employees, sharing insights, best practices, and real-world experiences with Azure.

A GitHub Action for running the ZAP API scan

A GitHub Action for running the ZAP Full scan

A GitHub Action for running the ZAP Baseline scan

A full-stack serverless todo app built on AWS, showcasing a comprehensive DevOps implementation with Terraform, GitHub Actions CI/CD, and a modern serverless architecture.

This project features a robust CI/CD pipeline designed for a 3-tier application that supports CRUD (Create, Read, Update, Delete) operations. The pipeline automates the security, build, testing, and deployment processes, ensuring seamless delivery of features and enhancements.