Giters
Odd Christer Brovig (oddcb)

oddcb

Geek Repo

6

followers

3

following

104

stars

Github PK Tool:Github PK Tool

Odd Christer Brovig's starred repositories

bcc

BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more

Language:CLicense:Apache-2.0Stargazers:20059Issues:556Issues:1886

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Language:GoLicense:MITStargazers:18951Issues:227Issues:2325

how-to-secure-anything

How to systematically secure anything: a repository about security engineering

Stargazers:9908Issues:226Issues:6

tbhm

The Bug Hunters Methodology

Stargazers:3840Issues:275Issues:10

ssh-audit

SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)

Language:PythonLicense:MITStargazers:3269Issues:41Issues:218

awesome-api-security

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

License:GPL-3.0Stargazers:2882Issues:65Issues:0

proxify

A versatile and portable proxy for capturing, manipulating, and replaying HTTP/HTTPS traffic on the go.

Language:GoLicense:MITStargazers:2659Issues:54Issues:101

SUDO_KILLER

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

Language:ShellLicense:MITStargazers:2165Issues:50Issues:11

DevSecOps-Playbook

This is a step-by-step guide to implementing a DevSecOps program for any size organization

License:GPL-3.0Stargazers:1866Issues:78Issues:4

Awesome-CloudSec-Labs

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.

Stargazers:1359Issues:23Issues:3

awesome-threat-modelling

A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.

Language:DockerfileLicense:CC0-1.0Stargazers:1332Issues:65Issues:5

jsluice

Extract URLs, paths, secrets, and other interesting bits from JavaScript

Language:GoLicense:MITStargazers:1316Issues:14Issues:12

macOS-enterprise-privileges

For Mac users in enterprise environments, this application gives users control over the administration of their machine by elevating their level of access to administrator privileges on macOS. Users can set a timeframe in the application's settings to perform specific tasks, such as installing or removing an application.

Language:Objective-CLicense:Apache-2.0Stargazers:1295Issues:82Issues:90

allstar

GitHub App to set and enforce security policies

Language:GoLicense:Apache-2.0Stargazers:1235Issues:31Issues:161

Security_Engineer_Interview_Questions

Every Security Engineer Interview Question From Glassdoor.com

Stargazers:1152Issues:40Issues:0

www-project-top-ten

OWASP Foundation Web Respository

Language:HTMLStargazers:1078Issues:306Issues:15

Awesome-Azure-Pentest

A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.

License:GPL-3.0Stargazers:969Issues:15Issues:0

pytm

A Pythonic framework for threat modeling

Language:PythonLicense:NOASSERTIONStargazers:871Issues:41Issues:81

awesome-detection-engineering

Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.

License:CC0-1.0Stargazers:777Issues:26Issues:0

cdxgen

Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server.

Language:JavaScriptLicense:Apache-2.0Stargazers:512Issues:15Issues:655

agent

SSH Session Monitoring Daemon

Language:CLicense:NOASSERTIONStargazers:451Issues:3Issues:21

awesome-risk-quantification

A collection of awesome projects, blog posts, books, and talks on quantifying risk

Stargazers:439Issues:14Issues:0

security-champions-playbook

Security Champions Playbook v 2.1

Stargazers:335Issues:27Issues:2

hcltm

Documenting your Threat Models with HCL

Language:GoLicense:MITStargazers:312Issues:11Issues:51

continuous-threat-modeling

A Continuous Threat Modeling methodology

License:NOASSERTIONStargazers:299Issues:26Issues:0

Security_Architect_and_Principal_Security_Engineer_Interview_Questions

This is a companion to the Security Engineer Questions

Stargazers:195Issues:3Issues:0

SecureBank

Language:JavaScriptLicense:MITStargazers:59Issues:4Issues:2

detection-engineering-pocket-guide

pocket guide for core detection engineering concepts

License:MITStargazers:26Issues:2Issues:0

terraform-vault-github-oidc

Terraform module to configure Vault for GitHub OIDC authentication from Action runners.

Language:HCLLicense:Apache-2.0Stargazers:24Issues:3Issues:10

www-project-threat-modeling-playbook

OWASP Foundation Web Respository

Language:HTMLStargazers:7Issues:5Issues:3