Common tasks of managing HTML DOM with vanilla JavaScript. Give me 1 ⭐if it’s useful.

Pentest Report Generator

Automatically exported from code.google.com/p/book-cs

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

A collection of awesome security hardening guides, tools and other resources

Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"

关于学习java安全的一些知识,正在学习中ing,欢迎fork and star

Pre-Built Vulnerable Environments Based on Docker-Compose

Enumerate the permissions associated with AWS credential set

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Cloud Security Posture Management (CSPM)

When MVC magic turns black

A curated list of awesome Java frameworks, libraries, software and books

Curated list of tools and resources related to the use of machine learning for cyber security

List of awesome penetration testing resources, tools and other shiny things

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readines…

a mindmap on pentest #pentestmindmap #oscp #lpt #ecsa #ceh #bugbounty

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

This is a webshell open source project

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

A list of public penetration test reports published by several consulting firms and academic security groups.

收藏的一些经典的历史、政治、心理、哲学、数学、计算机方面电子书(约10万本）

Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or ma…