brian_cloudconformity's starred repositories
You-Dont-Know-JS
A book series on JavaScript. @YDKJS on twitter.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
big-list-of-naughty-strings
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
API-Security-Checklist
Checklist of the most important security countermeasures when designing, testing, and releasing your API
docker-bench-security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
awesome-api-devtools
:books: A collection of useful resources for building RESTful HTTP+JSON APIs.
OSCP-Exam-Report-Template-Markdown
:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report
nodejsscan
nodejsscan is a static security code scanner for Node.js applications.
OWASP-Web-Checklist
OWASP Web Application Security Testing Checklist
breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
drawio-threatmodeling
Draw.io libraries for threat modeling diagrams
Docker-Security
Getting a handle on container security
vulncode-db
Vulncode-DB project
threat-model-cookbook
This project is about creating and publishing threat model examples.
sas-top-10
Serverless Architectures Security Top 10 Guide
Swagger-EZ
A tool geared towards pentesting APIs using OpenAPI definitions.
essential-nodejs-security-book
Documentation for Essential Node.js Security
aws-forensic-tools
Tools for AWS forensics
openapi-parser
Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approved by Burp for inclusion in their official BApp Store.
aws-apigateway-swagger-exporter
Tool for exporting API specification from existing AWS API Gateway APIs in a Swagger fromat
api_wordlist
A wordlist of API names for web application assessments