Scan your IAM policies before they hit prod. secure-iam-lint catches common misconfigurations with a simple CLI or CI step

This repository is a Challenge for the DevOps Community to get stronger in DevOps. This challenge starts on the 27th January 2024 and in the next 90 Days we promise ourselves to become better at DevOps. The reason for making this Public is so that others can learn from the community and help each other grow.

This repository contains an intentionally vulnerable Python Flask application used to demonstrate various security testing tools and DevSecOps practices. WARNING: This application contains serious security vulnerabilities. DO NOT use in production!

FastAPI Demo project weather api kubernetes hello-world azure-devops github-actions fastapi tekton-pipelines

🛡️ Lightweight desktop code scanner — heuristics + local AI (StarCoder2‑3B), optional Trivy. Local‑first, MIT.

Container image scanner with CVE checks and CIS benchmarks for secure CI/CD.

Sasha - Advanced Security Analysis Tool A modular, automated security analysis tool designed for app developers, penetration testers, and cybersecurity professionals. Sasha detects vulnerabilities in applications, APIs, and infrastructure while providing detailed risk assessment reports. Its modular architecture ensures extensibility

Secure-by-default FastAPI template with CI: pytest, Black/Flake8, Docker, ZAP, Trivy, CycloneDX SBOM, Bandit, Prometheus.

CI/CD Security Auditor - Automated security scanning for CI/CD pipelines, secrets, and dependencies

Python-based security automation engine for baseline mapping, SAST/SCA report parsing, and CloudTrail log analysis.

A fully functional DevSecOps Continuous Integration (CI) pipeline using GitHub Actions.

Blueprint profesional de arquitectura DevSecOps en Azure y AWS con Terraform, CI/CD, seguridad y control de aprobadores.

Detecção de brute force com regras YAML (blue team)

Une petite API Python (Flask) conçue avec une approche DevSecOps : sécurisée dès le développement, containerisée et livrée via une pipeline CI/CD automatisée.

This repository contains a DevSecOps pipeline for a simple web application. The pipeline uses Jenkins and Harbor to build, scan, and deploy the application to an EKS cluster. The pipeline also utilizes webhooks when a new commit is pushed to the repository or when a security vulnerability is detected.

A comprehensive security scanning tool that combines traditional pattern matching with semantic analysis to detect vulnerabilities, secrets, and security issues across multiple programming languages and frameworks.

A Python-based Intrusion Detection System (IDS) for monitoring network traffic, system logs, and port scanning activities to detect potential security threats. Features a graphical user interface (GUI) for real-time alerts and configuration.

Open-source MOSA-compliant autonomy SDK for distributed command and control of autonomous systems, sensors, and payloads with AI integration