cfbarbero

privateGPT

Interact with your documents using the power of GPT, 100% privately, no data leaks

bruno

Opensource IDE For Exploring and Testing Api's (lightweight alternative to postman/insomnia)

infisical

♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure and prevent secret leaks.

openobserve

🚀 10x easier, 🚀 140x lower storage cost, 🚀 high performance, 🚀 petabyte scale - Elasticsearch/Splunk/Datadog alternative for 🚀 (logs, metrics, traces, RUM, Error tracking, Session replay).

docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.

embedchain

Personalizing LLM Responses

sonarqube

Continuous Inspection

hyperdx

Resolve production issues, fast. An open source observability platform unifying session replays, logs, metrics, traces and errors powered by Clickhouse and OpenTelemetry.

syft

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

ThreatMapper

Open Source Cloud Native Application Protection Platform (CNAPP)

pacu

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

mercury

Convert Jupyter Notebooks to Web Apps

detect-secrets

An enterprise friendly way of detecting and preventing secrets in code.

awesome-behavioral-interviews

Tips and resources to prepare for Behavioral interviews.

scribble-diffusion

Turn your rough sketch into a refined image using AI

dockle

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

dependency-track

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

qnm

:mag: cli utility for querying the node_modules directory

openscap

NIST Certified SCAP 1.2 toolkit

selefra

The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).

marsha

Marsha is a functional, higher-level, English-based programming language that gets compiled into tested Python software by an LLM

sessionprobe

SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across a list of URLs, highlighting potential authorization issues.

data-drift

Metrics Observability & Troubleshooting

security-interview-questions

Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and so on

terraform-aws-landing-zone

Terraform Module for AWS Landing Zone

aws-summarize-account-activity

anomstack

Anomstack - Painless open source anomaly detection for your metrics 📈📉🚀

klouddbshield

KloudDB Shield is a security tool that checks for CIS compliance - Postgres, MySQL and RDS

sso-sync-to-amazon-rds

chatgpt-faq-slack-bot

A user-trainable Knowledge Base / FAQ Slack Bot on AWS SAM based on ChatGPT and Embeddings.