Paul McCarty's repositories
DevSecOps-Playbook
This is a step-by-step guide to implementing a DevSecOps program for any size organization
commit-audit
Shell script that checks if git commits are signed
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Bugcrowd-tech
Scraped Bugcrowd programs for techstack
buildkite-agent
The Buildkite Agent is an open-source toolkit written in Go for securely running build jobs on any device or network
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
juicyinfo-nuclei-templates
Nuclei (https://github.com/projectdiscovery/nuclei) templates for extracting juicy info from web pages
Valid8Proxy
Tool designed for fetching, validating, and storing working proxies.
APAC-Conferences
A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.
Arjun
HTTP parameter discovery suite.
cloud-headers
This is a authoratative listing of all the HTTP headers used by the major cloud providers
InfoSec-Black-Friday
All the deals for InfoSec related software/tools this Black Friday
niftybank-app
test of the repo forking private change
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
pipelight
Automation pipelines but easier.
scorecard
OpenSSF Scorecard - Security health metrics for Open Source
sectalks.github.io
SecTalks socially authored website
wappalyzer
The last commit of Wappalyzer before it went private
wg-securing-software-repos
OpenSSF Working Group on Securing Software Repositories
www-revent-appsec-pacific-northwest-security-conference
OWASP Foundation Web Respository