Moises Tapia's Projects
Advanced Terraform
WARNING: This app contains security vulnerabilities. AltoroJ is a sample banking J2EE web application. It shows what happens when web applications are written with consideration of app functionality but not app security. It's a simple and uncluttered platform for demonstrating and learning more about real-life application security issues.
In-depth Attack Surface Mapping and Asset Discovery
A service that analyzes docker images and applies user-defined acceptance policies to allow automated container image validation and certification
A Tool for Domain Flyovers
Centralize Vulnerability Assessment and Management for DevSecOps Team
Application Security Verification Standard
A jekyll theme for personal website
Awesome .NET Security Resources
Defund the Police.
Sample DevSecOps pipelines (heavily biased on the "Sec") for various stacks and tools using open-source security tools and AWS native services
Open source demos, concept and guidance related to the AWS CIS Foundation framework.
AI-based, context-driven network device ranking
BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p
This repo is just a guide where you can find all labs of burp suite resolved, you can see the workflow and all type of web attacks
Hack Cameras CCTV FREE
All materials for the Cassandra Workshop Series in a single place
the only cheat sheet you need
Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
CIS Docker Benchmark - InSpec Profile
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
Code Pulse is a real-time code coverage tool for penetration testing activities
Kubernetes Security Course
Know the dangers of credential reuse attacks.
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.