za

gin

Gin is a HTTP web framework written in Go (Golang). It features a Martini-like API with much better performance -- up to 40 times faster. If you need smashing performance, get yourself some Gin.

hugo

The world’s fastest framework for building websites.

curl

A command line tool and library for transferring data with URL syntax, supporting DICT, FILE, FTP, FTPS, GOPHER, GOPHERS, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, MQTT, POP3, POP3S, RTMP, RTMPS, RTSP, SCP, SFTP, SMB, SMBS, SMTP, SMTPS, TELNET, TFTP, WS and WSS. libcurl offers a myriad of powerful features

goaccess

GoAccess is a real-time web log analyzer and interactive viewer that runs in a terminal in *nix systems or through your browser.

hey

HTTP load generator, ApacheBench (ab) replacement

docker-elk

The Elastic stack (ELK) powered by Docker and Compose.

aws-lambda-power-tuning

AWS Lambda Power Tuning is an open-source tool that can help you visualize and fine-tune the memory/power configuration of Lambda functions. It runs in your own AWS account - powered by AWS Step Functions - and it supports three optimization strategies: cost, speed, and balanced.

materials

Bonus materials, exercises, and example projects for our Python tutorials

elasticsearch-py

Official Python client for Elasticsearch

security-study-plan

Complete Practical Study Plan to become a successful cybersecurity engineer based on roles like Pentest, AppSec, Cloud Security, DevSecOps and so on...

Security-101

8 Lessons, Kick-start Your Cybersecurity Learning.

furo

A clean customizable documentation theme for Sphinx

tracecat

The open source Tines alternative. Automate security workflows at scale with code and no-code.

coreruleset

OWASP CRS (Official Repository)

msticpy

Microsoft Threat Intelligence Security Tools

jarm

Beginners-Crash-Course-to-Elastic-Stack-Series-Table-of-Contents

AZ500-AzureSecurityTechnologies

Microsoft Azure Security Technologies

PurplePanda

Identify privilege escalation paths within and across different clouds

opensearch-py

Python Client for OpenSearch

cobaltstrike

Code and yara rules to detect and analyze Cobalt Strike

MSOLSpray

A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.

laravel-security-checker

Scan your Laravel app dependencies for known security vulnerabilities.

Lucky-Visitor-Scam-IoC

Automatically update IoC for lucky visitor scam

apache-http-logs

to detect vulnerability scans, XSS and SQLI attacks, examine access log files for detections.

KotakAmalPintar

Kotak Amal Pintar Menggunakan Sensor TCS3200 dan Telegram Bot

trivybeat

Custom Elastic Beat. Trivybeat fetches running Docker containers, scan CVEs of those containers using Trivy server and index them into Elasticsearch.

jwt_demo

Demo environment for showing vulnerabilities in JWT security

PathFinding

A simple and optimised pathfinding implementation for solving image based mazes

website

Website that showcases several DevSecOps tutorials in from this organisation