rung

headscale

An open source, self-hosted implementation of the Tailscale control server

crossplane

The Cloud Native Control Plane

awesome-threat-detection

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

tetragon

eBPF-based Security Observability and Runtime Enforcement

json-diff

Structural diff for JSON files

saas-attacks

Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown

jd

JSON diff and patch

drawio-threatmodeling

Draw.io libraries for threat modeling diagrams

rubocop-github

Code style checking for GitHub's Ruby projects

awesome-cloud-security

A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

selinux-notebook

The SELinux Notebook

slsa-github-generator

Language-agnostic SLSA provenance generation for Github Actions

melange

build APKs from source code

shisho

Lightweight static analyzer for several programming languages

cloud-security-vulnerabilities

List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud, Oracle Cloud, IBM Cloud etc

detection-rules

Collection of YARA-L 2.0 sample rules for the Chronicle Detection API

egress-operator

A Kubernetes operator to produce egress gateway Envoy pods and control access to them with network policies

fuzzit

CLI to integrate continuous fuzzing with Fuzzit (no longer available)

slsa-verifier

Verify provenance from SLSA compliant builders

phishing_kits

Exposing phishing kits seen from phishunt.io

policy-controller

Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign

awesome-gcp-pentesting

Tools and blogs I use to perform GCP red teams

OSCAR

A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain

seccamp-2022

セキュリティ・キャンプ 2022 B6

darkfiles

Darkfiles finds orphaned files in container images and makes them to bad deeds

vulbr

Toy browser on single process / thread

clank

Simple tool that allows you to detect imposter commits in GitHub Actions workflows.

shavar

Tracking Protection update service for Firefox based on Safe Browsing protocol

gitlab-comment

About gitlab-comment is a CLI command to post Merge Request Note.

seccamp-2023-sandbox-service