Docker Bench for Security
The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production. Automated tests are based on the CIS Docker Benchmark v1.6.0. We are making this available as an open-source utility so the Docker community can have an easy way to self-assess their hosts and Docker containers against this benchmark.
FEATURES
ALTERNATIVES
WordPress security scanner for identifying vulnerabilities in WordPress websites.
Next-generation Linux exploit suggester with improved features for finding privilege escalation vulnerabilities.
A repository of open-source plugins for Rapid7 InsightConnect
A tool for scanning websites with open .git repositories and dumping their content for Bug Hunting/Pentesting Purposes.
A list of vulnerable applications for testing and learning
A virtual host scanner with the ability to detect catch-all scenarios, aliases, and dynamic default pages, presented at SecTalks BNE in September 2017.
A platform to learn SQL injection techniques and methods
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.