OWASP WrongSecrets Logo

OWASP WrongSecrets

0
Free
Resources
security
cloud-security
devsecops
Visit Website

Welcome to the OWASP WrongSecrets game! The game is packed with real-life examples of how not to store secrets in your software. Each challenge helps you recognize common mistakes in secrets management and reflect on your own strategy. Play the challenges on Heroku, Render.io, Railway, Minikube, AWS, GCP, Azure, or your own cloud environment.

FEATURES

ALTERNATIVES

Best-practice-for-network-segmentation Logo
Best-practice-for-network-segmentation

Best practices for corporate network segmentation to protect against basic targeted attacks

Free
Resources
OWASP SamuraiWTF Logo
OWASP SamuraiWTF

The best security training environment for Developers and AppSec Professionals.

Free
Resources
HTB Academy Logo
HTB Academy

HTB Academy offers guided cybersecurity training with industry certifications to help you become a market-ready professional.

Free
Resources
Nessus Cheat Sheet Logo
Nessus Cheat Sheet

A comprehensive guide to Nessus, a vulnerability scanner, covering data directories, binary directories, logs directories, plugin directories, advanced settings, API, and good practices.

Free
Resources
SANS Logo
SANS

SANS Institute provides cyber security training, certifications, and degrees to empower cyber security practitioners and teams.

Free
Resources
Apple Silicon Mac Security Guide Logo
Apple Silicon Mac Security Guide

Enhance the security and privacy of Apple silicon Mac computers with incremental changes and user capability.

Free
Resources
NodeGoat Logo
NodeGoat

NodeGoat provides an environment to learn and address OWASP Top 10 security risks in Node.js web applications.

Free
Resources
Contribution Guidelines Logo
Contribution Guidelines

Guidelines for contributing to a cybersecurity tools and resources list

Free
Resources

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free
Resources
Kriptos Logo

Kriptos

An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.

Commercial
Data Protection
System Two Security Logo

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial
Security Operations
Aikido Security Logo

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial
Application Security
Permiso Logo

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial
IAM
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security