A curated list of delightful Bash scripts and resources.

📖 For those who wanna learn Bash

Threat matrix for CI/CD Pipeline

✔️ More than 100 security checks for your Node.js API

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into product…

best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect

Pre-Built Vulnerable Environments Based on Docker-Compose

End-to-end encrypted, FOSS cloud for Photos, 2FA secrets and more!

Visualization of related subreddits

📚 A curated list of awesome CI CD security resources

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

🎵 Is a free asynchronous library from reverse engineered Shazam API written in Python 3.10+ with asyncio and aiohttp.

Improved file parsing for LLM’s

SecMobi Wiki is a collection of mobile security resources.

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Checklist of the most important security countermeasures when designing, testing, and releasing your API

AzureGoat : A Damn Vulnerable Azure Infrastructure

🕶 Design fun and insightful CTF challenges

IntelOwl: manage your Threat Intelligence at scale

A list of resources for those interested in getting started in bug bounties

A collection of various awesome lists for hackers, pentesters and security researchers

JAW: A Graph-based Security Analysis Framework for Client-side JavaScript

Collection of methodology and test case for various web vulnerabilities.

AppSec Ezine Public Repository.

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.