coloristlife's repositories
ASVS
Application Security Verification Standard
awesome-aws-security
Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
awesome-compose
Awesome Docker Compose samples
awesome-ctf
A curated list of CTF frameworks, libraries, resources and softwares
awesome-security-hardening
A collection of awesome security hardening guides, tools and other resources
aws-eks-best-practices
A best practices guide for day 2 operations, including operational excellence, security, reliability, performance efficiency, and cost optimization.
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
Hacking-Security-Ebooks
Top 100 Hacking & Security E-Books (Free Download)
HackingResource
“玄魂工作室--安全圈” 知识星球内资源汇总
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Information_Security_Books
150本信息安全方面的书籍书籍(持续更新)
Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
KCon
KCon is a famous Hacker Con powered by Knownsec Team.
kube-hunter
Hunt for security weaknesses in Kubernetes clusters
kubeapps
A web-based UI for deploying and managing applications in Kubernetes clusters
owtf
Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp
PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
prowler
Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains all CIS controls and many more additional checks that help on GDPR, HIPAA and other security frameworks.
rengine
reNgine is a reconnaissance engine(framework) that does end-to-end reconnaissance with the help of highly configurable scan engines and does information gathering about the target web application. reNgine makes use of various open-source tools and makes a configurable pipeline of reconnaissance.
s3-account-search
S3 Account Search
ScoutSuite
Multi-Cloud Security Auditing Tool
SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list
the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
threatmodel-for-aws-s3
ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
wangyi3060
Config files for my GitHub profile.
www-community
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
zero-trust-architecture
Principles to help you design and deploy a zero trust architecture