From 72b0188edcad5db642fc539c6cf1947daa62dda9 Mon Sep 17 00:00:00 2001 From: root <60298999+SecTheTech@users.noreply.github.com> Date: Mon, 1 Feb 2021 17:08:11 +0100 Subject: [PATCH 1/3] Add trivy --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index ae87d02..8b17bf2 100644 --- a/README.md +++ b/README.md @@ -327,6 +327,7 @@ Provided data: IPv4 hosts, sub/domains/whois, ports/banners/protocols, technolog - [Securing DevOps](https://manning.com/books/securing-devops) - A book on Security techniques for DevOps that reviews state of the art practices used in securing web applications and their infrastructure. - [ansible-os-hardening](https://github.com/dev-sec/ansible-os-hardening) - Ansible role for OS hardening - [bunkerized-nginx](https://github.com/bunkerity/bunkerized-nginx) - nginx Docker image secure by default +- [Trivy](https://github.com/aquasecurity/trivy) - A simple and comprehensive vulnerability scanner for containers and other artifacts, suitable for CI. ## Operating Systems From a900e54c807f75795f518a73d6047c7f639fff18 Mon Sep 17 00:00:00 2001 From: root <60298999+SecTheTech@users.noreply.github.com> Date: Mon, 1 Feb 2021 17:18:15 +0100 Subject: [PATCH 2/3] Add axiom --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 8b17bf2..15cb291 100644 --- a/README.md +++ b/README.md @@ -305,7 +305,7 @@ Provided data: IPv4 hosts, sub/domains/whois, ports/banners/protocols, technolog ## Red Team Infrastructure Deployment - [Redcloud](https://github.com/khast3x/Redcloud) - A automated Red Team Infrastructure deployement using Docker. - +- [Axiom](https://github.com/pry0cc/axiom) -Axiom is a dynamic infrastructure framework to efficiently work with multi-cloud environments, build and deploy repeatable infrastructure focussed on offensive and defensive security. ## Usability From 0c8b28d3a1cfa97abb4d1fdd7c596b0fbb085557 Mon Sep 17 00:00:00 2001 From: root <60298999+SecTheTech@users.noreply.github.com> Date: Mon, 1 Feb 2021 17:24:53 +0100 Subject: [PATCH 3/3] Adjust spaces --- README.md | 8 +++----- 1 file changed, 3 insertions(+), 5 deletions(-) diff --git a/README.md b/README.md index 15cb291..ada27d3 100644 --- a/README.md +++ b/README.md @@ -150,18 +150,20 @@ Thanks to all [contributors](https://github.com/sbilly/awesome-security/graphs/c - [netmap](http://info.iet.unipi.it/~luigi/netmap/) - netmap is a framework for high speed packet I/O. Together with its companion VALE software switch, it is implemented as a single kernel module and available for FreeBSD, Linux and now also Windows. ### Firewall + - [pfSense](https://www.pfsense.org/) - Firewall and Router FreeBSD distribution. - [OPNsense](https://opnsense.org/) - is an open source, easy-to-use and easy-to-build FreeBSD based firewall and routing platform. OPNsense includes most of the features available in expensive commercial firewalls, and more in many cases. It brings the rich feature set of commercial offerings with the benefits of open and verifiable sources. - [fwknop](https://www.cipherdyne.org/fwknop/) - Protects ports via Single Packet Authorization in your firewall. ### Anti-Spam + - [Spam Scanner](https://github.com/spamscanner) - Anti-Spam Scanning Service and Anti-Spam API by [@niftylettuce](https://github.com/niftylettuce). - [rspamd](https://github.com/rspamd/rspamd) - Fast, free and open-source spam filtering system. - [SpamAssassin](https://spamassassin.apache.org/) - A powerful and popular email spam filter employing a variety of detection technique. - [Scammer-List](https://scammerlist.now.sh/) - A free open source AI based Scam and Spam Finder with a free API - ### Docker Images for Penetration Testing & Security + - `docker pull kalilinux/kali-linux-docker` [official Kali Linux](https://hub.docker.com/r/kalilinux/kali-linux-docker/) - `docker pull owasp/zap2docker-stable` - [official OWASP ZAP](https://github.com/zaproxy/zaproxy) - `docker pull wpscanteam/wpscan` - [official WPScan](https://hub.docker.com/r/wpscanteam/wpscan/) @@ -300,8 +302,6 @@ Provided data: IPv4 hosts, sub/domains/whois, ports/banners/protocols, technolog - [PayloadsAllTheThings](https://github.com/swisskyrepo/PayloadsAllTheThings) - A list of useful payloads and bypass for Web Application Security and Pentest/CTF - - ## Red Team Infrastructure Deployment - [Redcloud](https://github.com/khast3x/Redcloud) - A automated Red Team Infrastructure deployement using Docker. @@ -311,7 +311,6 @@ Provided data: IPv4 hosts, sub/domains/whois, ports/banners/protocols, technolog - [Usable Security Course](https://pt.coursera.org/learn/usable-security) - Usable Security course at coursera. Quite good for those looking for how security and usability intersects. - ## Big Data - [data_hacking](https://github.com/ClickSecurity/data_hacking) - Examples of using IPython, Pandas, and Scikit Learn to get the most out of your security data. @@ -402,7 +401,6 @@ Provided data: IPv4 hosts, sub/domains/whois, ports/banners/protocols, technolog - [Awesome Anti Forensics](https://github.com/remiflavien1/awesome-anti-forensic) - A collection of awesome tools used to counter forensics activities. - [Awesome Security Talks & Videos](https://github.com/PaulSec/awesome-sec-talks) - A curated list of awesome security talks, organized by year and then conference. - ### Other Common Awesome Lists Other amazingly awesome lists: