layzhi's repositories
attestation
ITE-6 Attestation Definitions
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
commonspeak2
Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
container-security-checklist
Checklist for container security - devsecops practices
container.training
Slides and code samples for training, tutorials, and workshops about Docker, containers, and Kubernetes.
DevSecOps
🔱 Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎
dispatch
All of the ad-hoc things you're doing to manage incidents today, done for you, and much more!
distroless
🥑 Language focused docker images, minus the operating system.
evidently
Evaluate and monitor ML models from validation to production. Join our Discord: https://discord.com/invite/xZjKRaNp8b
full-stack-fastapi-postgresql
Full stack, modern web application generator. Using FastAPI, PostgreSQL as database, Docker, automatic HTTPS and more.
gct
Graphical Code Tracer (GCT): Visualize code at lightning speed
go-design-patterns-2880139
Go Design Patterns
Go-SCP
Go programming language secure coding practices guide
in-toto
in-toto is a framework to protect supply chain integrity.
learning-ebpf
Learning eBPF, published by O'Reilly - coming spring 2023!
lucha
A CLI that scans for sensitive data in source code
nixery
Container registry which transparently builds images using the Nix package manager. Canonical repository is https://cs.tvl.fyi/depot/-/tree/tools/nixery
osquery-go
Go bindings for osquery
osv.dev
Open source vulnerability DB and triage service.
project
Repository for top-level information about the OpenGitOps project
Reddit-wiki-programming
Resources to Learn Data Structures and Algorithms, ace competitive programming, Get a Job in Tech/CS
SecretScanner
:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:
secure-sw-dev-fundamentals
Secure Software Development Fundamentals courses (from the OpenSSF Best Practices WG)
Security-with-Go
Security with Go, published by Packt
system_design
Preparation links and resources for system design questions
syzkaller
syzkaller is an unsupervised coverage-guided kernel fuzzer
ThreatMapper
Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.
webinars
Materials for webinars
xx
Dockerfile cross-compilation helpers