Through a series of levels, learn about common mistakes and gotchas when using Amazon Web Services (AWS). Everything is run out of a single AWS account, and all challenges are sub-domains of flaws.cloud. Contact scott@summitroute.com for feedback, security issues, or fan mail. Greetz to Andres Riancho, @CornflakeSavage, Ken Johnson, and Nicolas Gregoire for advice and ideas.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
APKiD is a tool that identifies compilers, packers, obfuscators, and other weird stuff in APK files.
A Java API for searching and downloading Android applications from Google Play with additional check-in features for generating ANDROID-ID.
A source code search engine for searching alphanumeric snippets, signatures, or keywords in web page HTML, JS, and CSS code.
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
A technology lookup and lead generation tool that identifies the technology stack of any website and provides features for market research, competitor analysis, and data enrichment.
A tool for detecting capabilities in executable files, providing insights into a program's behavior and potential malicious activities.
Search engine for open-source Git repositories with advanced features like case sensitivity and regular expressions.
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
A PHP port of Rack::Honeypot, a spam trap that detects and blocks spambots
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.