Git-Mirrors/sec-pentesting-toolkit

mirror of https://github.com/autistic-symposium/sec-pentesting-toolkit.git synced 2025-04-26 18:49:08 -04:00

History

Mia von Steinkirch a74a3b9f6e 👱🏻‍♀️Some notes in Flask

2019-10-29 19:04:03 -07:00

..

intro_heroku.md

👱🏻‍♀️Some notes in Flask

2019-10-29 19:04:03 -07:00

README.md

add readme

2019-10-29 18:45:02 -07:00

README.md

Cloud and K8s Hacking

CI/CD pipelines

Static code security analyzers: SonarQube (Javascript scanner), NodeJsScan.
Package dependency security analyzers: Snyk.
Docker image security analyzers: Hadolint, Clair, Anchore.
AWS IAM permission analyzers: IAM access advisor APIs.
PMapper.
AWS S3 permission analyzers: s3audit.
Docker runtime anomaly detection: Falco.
Kubernetes policy security analyzers: RBAC.
Policy auditing tools: Rakkess.