📦 Make security testing of K8s, Docker, and Containerd easier.

A curated list of awesome Kubernetes security resources

OWASP Top 10 for Large Language Model Apps (Part of the GenAI Security Project)

CLI for managing secrets

Sample cloud-first application with 10 microservices showcasing Kubernetes, Istio, and gRPC.

Fast and accurate AI powered file content types detection

Multi-Cloud Security Auditing Tool

Contact: CRT@crowdstrike.com

A collection of Azure AD/Entra tools for offensive and defensive security purposes

Powershell Based tool for gathering information related to O365 intrusions and potential Breaches

Tool for building Kubernetes attack paths

Security + Governance Workshop

Links and resources for the O'Reilly Kubernetes Security book

OSV-SCALIBR: A library for Software Composition Analysis

GCP CIS 1.1.0 Benchmark InSpec Profile

Automation to assess the state of your M365 tenant against CISA's baselines

A log viewer for Kubernetes troubleshooting

MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

A PowerShell script that automates the security assessment of Microsoft 365 environments.

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Open Cyber Threat Intelligence Platform

Open Adversary Exposure Validation Platform

Cloud Security Posture Management (CSPM)

Vulnerable app with examples showing how to not use secrets