7 repositorios
Actionable, industry-standard guides for securing software applications and infrastructure.
Distinguishing note: Focuses on concise, actionable guides rather than broad documentation or high-level hardening recommendations.
Explore 7 awesome GitHub repositories matching security & cryptography · Security Knowledge Bases. Refine with filters or upvote what's useful.
The OWASP Cheat Sheet Series is a comprehensive, community-driven repository of concise security best practices and defensive coding patterns. It serves as a centralized knowledge base for developers and security professionals, providing actionable guidance to secure applications across the entire software development lifecycle. The project covers a vast array of security domains, ranging from fundamental web application hardening and authentication protocols to specialized controls for modern infrastructure and artificial intelligence systems. What distinguishes this project is its decentral
Provides concise, actionable guides for securing software applications and infrastructure.
Micro8 is a security auditing knowledge base and penetration testing resource library. It serves as a curated collection of guides and documentation focused on vulnerability assessment. The project provides educational content and study guides for manual source code review, domain escalation, and internal network auditing. It includes a toolkit of reference materials for analyzing network traffic logs and identifying brute-force patterns. The library covers technical domains including web penetration testing and privilege escalation. It organizes these materials through PDF-based knowledge r
Provides a centralized repository of actionable, industry-standard guides for vulnerability assessment and penetration testing.
This project is a comprehensive, curated directory of cybersecurity resources, software, and documentation designed to support system and network protection. It serves as a centralized knowledge base and index for security professionals, aggregating industry-standard practices and open-source tools across a wide range of technical domains. The repository distinguishes itself by providing a structured collection of methodologies and frameworks for security operations. It covers critical areas including threat intelligence, digital forensics, infrastructure auditing, and vulnerability assessmen
Provides actionable, industry-standard guides for securing software applications and infrastructure.
Secguide is an API security hardening framework and a comprehensive knowledge base of secure coding guidelines. It provides a multi-language security standard and a set of static analysis rules designed to identify security flaws and protect application programming interfaces from common exploits. The project functions as a reference library of security patterns and remediation guides, maintaining consistent security requirements across various programming languages. It utilizes rule-based pattern matching and a static analysis pipeline to detect dangerous API calls and vulnerabilities within
Provides a reference library of security patterns and remediation guides to help developers prevent common software vulnerabilities.
This project is a technical interview study guide and a markdown-driven static site designed to help developers prepare for coding screenings. It serves as a curated collection of common technical questions and expert answers, functioning as a comprehensive educational resource. The platform provides a structured curriculum and reference materials across several key domains. This includes a JavaScript language reference covering programming fundamentals, a frontend engineering curriculum focused on UI patterns and responsive design, and a web security knowledge base detailing attack vectors a
Provides an actionable knowledge base for understanding and preventing web-based security threats like XSS and CORS issues.
This project is a comprehensive security suite and knowledge base focused on the engineering and construction of trustworthy digital and physical systems. It provides a systematic framework for security engineering design, covering the establishment of high-assurance architectures and the implementation of security models that govern how a system achieves its safety goals. The project is distinguished by its focus on formal assurance and adversarial deterrence. It includes methodologies for creating security assurance cases and proofs to verify system trustworthiness, alongside economic and t
Offers a comprehensive collection of engineering principles and patterns for designing secure systems.
Go-SCP es una guía de codificación segura y framework de prevención de vulnerabilidades para el lenguaje de programación Go. Sirve como un manual técnico para implementar patrones de programación defensiva y benchmarks de seguridad para prevenir vulnerabilidades de software comunes. El proyecto funciona como una referencia de seguridad estática, mapeando debilidades de software conocidas a patrones de remediación específicos de Go. Proporciona un repositorio curado de estándares de codificación segura y prácticas de implementación validadas centradas específicamente en la seguridad de aplicaciones web. El framework cubre la auditoría de seguridad comparando el código fuente con benchmarks establecidos y utiliza el mapeo de vulnerabilidades basado en patrones para identificar fallos de programación. La guía se distribuye a través de una arquitectura de referencia estructurada y está disponible en formatos portátiles como PDF y ePub para referencia offline.
Provides actionable, industry-standard security guides and coding standards in portable formats.