sqr's repositories
SecurityShepherd
Web and mobile application security training platform
sql-inject-demo
a sample project to demonstrate SQL injection vulnerability
cg-test-keyless-sign
to test out https://edu.chainguard.dev/open-source/sigstore/how-to-keyless-sign-a-container-with-sigstore/
demo-synopsys-action-miniJS
demo project to illustrate the use of synopsys-sig/synopsys-action@v1.9.0; pipeline scan with results uploaded to GH security dashboard; PR scan with results feedback as pull request comment.
seeker-example-python-django
to illustrate Seeker agent deployment
BenchmarkJava
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploit
insecure-bank
An insecure example application
io-jenkins-pipelines
Jenkins pipeline script to run IO with jenkins plugin
java-sec-code-non-build
Java web common vulnerabilities and security code which is base on springboot and spring security
juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
kubernetes-goat
Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀
lab-insecurebank
Application for DevSecOps training
microservices-java-grpc
Java microservices with REST, and gRPC using BFF pattern. This repository contains backend services. Everything is dockerized and ready to "Go" actually "Java" :-)
robot-shop
Sample microservices application for playing with
skills-copilot-codespaces-vscode
My clone repository
TheK8sBook
YAML files for use with The Kubernetes Book