batamhacker

cent

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

gitlab-devops-automation

Gitlab CI/CD Templates for build,test,deploy to your infra

gitlab-devsecops-springboot3-maven

Example implementation DevSecOps using Gitlab

SecurityTesting

A-Red-Teamer-diaries

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Advanced-SQL-Injection-Cheatsheet

A cheat sheet that contains advanced queries for SQL Injection of all types.

awesome-devsecops

An authoritative list of awesome devsecops tools with the help from community experiments and contributions.

awesome-threat-modelling

A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.

batamhacker.github.io

belajar-kubernetes

Belajar kubernetes untuk pemula sampai mahir

bruteforce-lists

Some files for bruteforcing certain things.

DefaultCreds-cheat-sheet

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

devops-express

devops-laravel

devops laravel containerized example

devopsjuni-jenkins

DevSecOps-with-GitLab

DevSecOps FYPJ with GitLab

django.nV

Vulnerable Django Application

DOMPurify

DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:

fireeye-core.github.io

insider

Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).

MindAPI

Organize your API security assessment by using MindAPI. It's free and open for community collaboration.

nerdbug

Nuclei-Templates-Collection

Nuclei Templates Collection

OSCP-Exam-Report-Template-Markdown

:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

pentest-plus-study-notes

🧾 Collection of resources to study for CompTia Pentest+ exam (PT0-002).

SourceCodeReview

Source Code Review resources for Bug Bounty Hunters & Developers. This Repo is updated consistently.

ThreatMapper

🔥 🔥 Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more. 🔥 🔥

top25-parameter

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Web-Application-Pentest-Checklist-1

wiki

XS-Leaks Wiki