cji

ThreatHunting-Keywords

Awesome list of keywords and artifacts for Threat Hunting sessions

workload-security-evaluator

Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.

ghidralligator

caldera

Automated Adversary Emulation Platform

kubefuzz

Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.

detection-and-response-pipeline

✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The purpose is to create a reference hub for designing effective threat detection and response pipelines. 👷 🏗

awesome-k8s-security

A curated list for Awesome Kubernetes Security resources

llef

LLEF is a plugin for LLDB to make it more useful for RE and VR

Fast-Kubernetes

This repo covers Kubernetes with LABs: Kubectl, Pod, Deployment, Service, PV, PVC, Rollout, Multicontainer, Daemonset, Taint-Toleration, Job, Ingress, Kubeadm, Helm, etc.

tokenizer

HTTP proxy that injects 3rd party credentials into requests

security-interview-questions

Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and so on

Falco-bypasses

Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).

EnterprisePurpleTeaming

Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.

Awesome-CloudSec-Labs

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.

detection-engineering-pocket-guide

pocket guide for core detection engineering concepts

Raspberry-Pi-PWM-Fan-Control

Raspberry Pi PWM fan contorl (for Notcua PWM fans)

raspberry-pi-pwm-fan-control

raspberry pi pwm fan control

Breach-Report-Collection

A collection of companies that disclose adversary TTPs after they have been breached

threatest

Threatest is a CLI and Go framework for end-to-end testing threat detection rules.

managed-kubernetes-auditing-toolkit

All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.

ebeedex

Find your favorite eBee

awesome-kubernetes-threat-detection

A curated list of resources about detecting threats and defending Kubernetes systems.

awesome-detection-rules

This is a collection of threat detection rules / rules engines that I have come across.

kubernetes-security-demos

exploit_mitigations

Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.

KubeDagger

Kubernetes offensive framework built in eBPF

avml

AVML - Acquire Volatile Memory for Linux

learning-ebpf

This repository contains various code snippets and learnings around eBPF

all-the-bufo

All the bufo emojis you could possibly ask for

caretta

Instant K8s service dependency map, right to your Grafana.