Odd Christer Brovig's starred repositories
how-to-secure-anything
How to systematically secure anything: a repository about security engineering
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
SUDO_KILLER
A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
DevSecOps-Playbook
This is a step-by-step guide to implementing a DevSecOps program for any size organization
Awesome-CloudSec-Labs
Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.
awesome-threat-modelling
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
macOS-enterprise-privileges
For Mac users in enterprise environments, this application gives users control over the administration of their machine by elevating their level of access to administrator privileges on macOS. Users can set a timeframe in the application's settings to perform specific tasks, such as installing or removing an application.
Security_Engineer_Interview_Questions
Every Security Engineer Interview Question From Glassdoor.com
www-project-top-ten
OWASP Foundation Web Respository
Awesome-Azure-Pentest
A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.
awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
awesome-risk-quantification
A collection of awesome projects, blog posts, books, and talks on quantifying risk
security-champions-playbook
Security Champions Playbook v 2.1
continuous-threat-modeling
A Continuous Threat Modeling methodology
Security_Architect_and_Principal_Security_Engineer_Interview_Questions
This is a companion to the Security Engineer Questions
detection-engineering-pocket-guide
pocket guide for core detection engineering concepts
terraform-vault-github-oidc
Terraform module to configure Vault for GitHub OIDC authentication from Action runners.
www-project-threat-modeling-playbook
OWASP Foundation Web Respository