Kurtis Velarde's repositories
amazon-eks-devsecops
Aqua Demo Testing
charts
Bitnami Helm Charts
CKA-practice-exercises
This is a guide for passing the CNCF Certified Kubernetes Administrator (CKA) with practice exercises. Good luck!
class_notes
Class notes for the ShadowBrokers
cve
Gather and update all available and newest CVEs with their PoC.
DVWA
Damn Vulnerable Web Application (DVWA)
falco-charts-1
Community managed Helm charts for running Falco with Kubernetes
falco_rules
test rule set for runtime host and Kubernetes policies
headers
K8s Examle project
jenkins
Jenkins DSL Repo for testing
JNDI-Exploit-Kit
JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps vulnerable to JNDI Injection)
k8s_test_cases
Some Test Cases
kubernetes
Kubernetes playground
kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
kubernetes.io
Training Repos
log4shell-vulnerable-app
Spring Boot web application vulnerable to CVE-2021-44228, nicknamed Log4Shell.
mtls_kata
Openssl PKI Examples with golang app as functional test
owasp-masvs
The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.
rules
Repository of yara rules
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
squid_proxy
Multi-mode Squid Proxy container running SSL intercept
ssti-payloads
🎯 Server Side Template Injection Payloads
subdirectories-discover
Perfect wordlist for discovering directories and files on target site
Termux-And-Kali-Linux-V3
Kumpulan Script Hacking Untuk Termux Dan Kali Linux
terraform-aws-ec2-instance
Terraform module which creates EC2 instance(s) on AWS
wpscan
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.