Sample code for integrating AWS CloudFormation templates security tests (using CFN-Nag and CFN-Guard) with both AWS Security Hub and AWS CodeBuild reports.

Python 24 10 Updated Mar 23, 2024

mpostument / awstaghelper

AWS bulk tagging tool

Go 158 18 Updated Mar 1, 2025

mandiant / SilkETW

C# 832 136 Updated Jun 1, 2023

cyberark / SkyArk

SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

PowerShell 911 161 Updated Dec 17, 2024

aws-solutions / automated-security-response-on-aws

Automated Security Response on AWS is an add-on solution that works with AWS Security Hub to provide a ready-to-deploy architecture and a library of automated playbooks. The solution makes it easie…

TypeScript 473 131 Updated Apr 21, 2026

aws-samples / amazon-vpc-traffic-mirroring-reinvent2019-workshop

CSS 4 2 Updated Oct 17, 2020

bee-san / Ciphey

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Rust 21,342 1,431 Updated Apr 23, 2026

jbrt / ec2cryptomatic-serverless

StepFunctions Demo -- Encrypt EBS volumes from AWS EC2 instances with a serverless StepFunctions machine

Python 7 5 Updated Aug 15, 2020

cedowens / aws-cli-notes

A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Training

19 2 Updated Mar 1, 2021

aws-samples / aws-kms-jce

The AWS KMS JCE Provider software library for Java is a vendor implementation for the Sun Java JCE (Java Cryptography Extension) provider framework with a focus on using asymmetric keys to sign and…

Java 21 10 Updated Oct 8, 2025

microsoft / avml

AVML - Acquire Volatile Memory for Linux

Rust 1,075 89 Updated Apr 23, 2026

madhuakula / kubernetes-goat

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

HTML 5,606 995 Updated Apr 16, 2026

flatironhealth / aws-remediation-framework

Python 20 3 Updated Jan 8, 2021

epi052 / recon-pipeline

An automated target reconnaissance pipeline.

Python 450 100 Updated Feb 13, 2023

tomnomnom / waybackurls

Fetch all the URLs that the Wayback Machine knows about for a domain

Go 4,409 542 Updated May 1, 2024

Static-Flow / gofingerprint

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

Go 208 36 Updated Jun 21, 2023

1N3 / Sn1per

Attack Surface Management Platform

Shell 9,695 2,038 Updated Feb 15, 2026

projectdiscovery / nuclei

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Go 28,042 3,367 Updated Apr 22, 2026

x90skysn3k / brutespray

Fast, multi-protocol credential brute-forcer. Parses Nmap, Nessus, and Nexpose output to automatically test default and custom credentials across 30+ protocols.

Go 2,409 425 Updated Apr 20, 2026

p33kab00 / dns-masscan

DNS resolution of multiple host names.

Shell 7 1 Updated Jul 10, 2018

tomnomnom / httprobe

Take a list of domains and probe for working HTTP and HTTPS servers

Go 3,108 524 Updated Jun 22, 2024

gwen001 / github-search

A collection of tools to perform searches on GitHub.

Python 1,485 357 Updated Feb 9, 2023

projectdiscovery / subfinder

Fast passive subdomain enumeration tool.

Go 13,486 1,536 Updated Apr 22, 2026

owasp-amass / amass

In-depth attack surface mapping and asset discovery

Go 14,454 2,116 Updated Apr 17, 2026

OTRF / Security-Datasets

Re-play Security Events

PowerShell 1,740 256 Updated Mar 20, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Rogerio Kasa rckasa

Achievements