Centralize Vulnerability Assessment and Management for DevSecOps Team

🔐 Authentication, Authorization, and Accounting (AAA) App and Plugin for Caddy v2. 💎 Implements Form-Based, Basic, Local, LDAP, OpenID Connect, OAuth 2.0 (Github, Google, Facebook, Okta, etc.), SAML Authentication. MFA/2FA with App Authenticators and Yubico. 💎 Authorization with JWT/PASETO tokens. 🔐

The DevSecOps toolset for REST APIs

Awesome DevSecOps на русском языке

SIAC is an enterprise SIEM built on open-source technology.

F5 Super-NetOps Programmability, Automation and DevOps Training Classes

The Security Dependency Orchestrator Service

Ansible Playbooks for Security Automation with Ansible2 book

'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.

REST API backend for Reconmap

List of tools for SecDevOps, vulnerability analysis, network scanning

A curated collection of tools and resources for building security with a developer first approach.

scripts to setup servers, as quickly as possible

Cucumber/BDD security tests example for Java (Spring Boot API).

Security tools that you can inject into devops

Automated dynamic security analysis by emulation of IoT firmware images in CI-pipelines.

OWASP SecureFlag Open Platform

PR Checks for Security Vulnerabilities

learning path to become a fullstack secdevops egineer

A proof-of-concept system for devsecops in cloud native architectures.

Use 'Makefile.sec + Docker' to run security tests in CI/CD pipelines.

A bunch of security pipeline definitions

Repository to maintain and manage Azure Custom Role Definitions

This repository is used to maintain Azure VM local admin passwords using an Azure Key vault