Patrick Miziewicz's starred repositories
how-to-secure-anything
How to systematically secure anything: a repository about security engineering
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
kiterunner
Contextual Content Discovery Tool
free-for-dev
A list of SaaS, PaaS and IaaS offerings that have free tiers of interest to devops and infradev
terraboard
:earth_africa: :clipboard: A web dashboard to inspect Terraform States
howtheysre
A curated collection of publicly available resources on how technology and tech-savvy organizations around the world practice Site Reliability Engineering (SRE)
react-saas-template
🌊 Template for building an SaaS / admin website using React + Material-UI
TinyCheck
TinyCheck allows you to easily capture network communications from a smartphone or any device which can be associated to a Wi-Fi access point in order to quickly analyze them. This can be used to check if any suspect or malicious communication is outgoing from a smartphone, by using heuristics or specific Indicators of Compromise (IoCs). In order to make it working, you need a computer with a Debian-like operating system and two Wi-Fi interfaces. The best choice is to use a Raspberry Pi (2+) a Wi-Fi dongle and a small touch screen. This tiny configuration (for less than $50) allows you to tap any Wi-Fi device, anywhere.
jenkins-spock
Unit-test Jenkins pipeline code with Spock
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
personal-server
Personal server configuration with k3s
terraformer
CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code
golang-tools-install-script
Simple Bash script to automate Go language tools single user installation or even removal.
chaos-mesh
A Chaos Engineering Platform for Kubernetes.
insider
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
aws_public_ips
Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS services
aws-security-benchmark
Open source demos, concept and guidance related to the AWS CIS Foundation framework.
cloudsploit
Cloud Security Posture Management (CSPM)
prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more