A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.
-
Updated
May 21, 2024 - Python
A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.
Static Value-Flow Analysis Framework for Source Code
🎯 Server Side Template Injection Payloads
Django application that performs SAST and Malware Analysis for Android APKs
🎯 CSV Injection Payloads
Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations
The purpose of this document is to outline the security risks and vulnerabilities that may arise when implementing ChatGPT in web applications and to provide best practices for mitigating these risks.
SAST Scanner Modified - Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!
Complete DevOps CI/CD project with Documented Walkthrough
Official documentation for Gitsecure
ESLint backbone repository for workshop
Github action to run PyCQA's bandit security linter.
Sonarqube community with postgreSQL database on docker
Text and Static Analysis of Java's Common Vulnerabilities and Exposures.
A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.
My clone repository of the GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.
Various scripts I wrote and thought could help others too
CodeScan: A Bash script for identifying potential security vulnerabilities in source code. Scan and find common patterns associated with risks like remote code execution. Get a detailed report on potential issues. Enhance your code security.
Add a description, image, and links to the code-security topic page so that developers can more easily learn about it.
To associate your repository with the code-security topic, visit your repo's landing page and select "manage topics."