Riccardo Mazza's starred repositories
Prompt-Engineering-Guide
🐙 Guides, papers, lecture, notebooks and resources for prompt engineering
kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
OWASP-Web-Checklist
OWASP Web Application Security Testing Checklist
awesome-threat-modelling
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
openappsec
open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.
prompts-royale
Automatically create prompts and make them fight each other to know which is the best
attack-flow
Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows.
stride-gpt
An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRIDE methodology.
RiskAssessmentFramework
The Secure Coding Framework
malicious-packages
A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerability (OSV) format.
llm-security
Dropbox LLM Security research code and results
OWASP-Calculator
🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
Software-Component-Verification-Standard
Software Component Verification Standard (SCVS)
Hallucination-Attack
Attack to induce LLMs within hallucinations
www-project-machine-learning-security-top-10
OWASP Machine Learning Security Top 10 Project
llm-confidentiality
Whispers in the Machine: Confidentiality in LLM-integrated Systems
www-project-top-25-parameters
OWASP Foundation Web Respository
security-culture
OWASP Security Culture repository
traNsLatorLaB
Come identificare la lingua di un testo e tradurlo nella lingua desiderata utilizzando i modelli Facebook fasttext e No Language Left Behind (NLLB) o Helsinki-NLP