Commits (2)
......@@ -1540,3 +1540,9 @@
[submodule "Penetration Testing/Training/DVCP-TE"]
path = Penetration Testing/Training/DVCP-TE
url = https://github.com/satejnik/DVCP-TE.git
[submodule "Penetration Testing/Training/sadcloud"]
path = Penetration Testing/Training/sadcloud
url = https://github.com/nccgroup/sadcloud.git
[submodule "Security/Cloud Security/parliament"]
path = Security/Cloud Security/parliament
url = https://github.com/duo-labs/parliament.git
Subproject commit 657992ee02d56df3e5a671b75db1860f1bce8523
Subproject commit a4f8e8455de98ee319e85e29f340d55f854770bf
......@@ -666,6 +666,7 @@ Training
- `OWASP WebGoat <https://www.owasp.org/index.php/Category:OWASP_WebGoat_Project>`_ - A deliberately insecure Web Application.
- `RopeyTasks <https://github.com/continuumsecurity/RopeyTasks>`_ - Deliberately vulnerable web application.
- `Sqli-labs <https://github.com/Audi-1/sqli-labs>`_ - SQLI labs to test error based, Blind boolean based, Time based.
- `Sadcloud <https://github.com/nccgroup/sadcloud>`_ - A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure.
- `Xvwa <https://github.com/s4n7h0/xvwa`_ - XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.
- `WackoPicko <https://github.com/adamdoupe/WackoPicko>`_ - A vulnerable web application used to test web application vulnerability scanners.
......@@ -742,6 +743,7 @@ Cloud Security
- `Azucar <https://github.com/nccgroup/azucar/>`_ - Security auditing tool for Azure environments.
- `CloudMapper <https://github.com/duo-labs/cloudmapper>`_ - CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
- `Hammer <https://github.com/dowjones/hammer>`_ - Dow Jones Hammer : Protect the cloud with the power of the cloud(AWS).
- `Parliament <https://github.com/duo-labs/parliament>`_ - An AWS IAM linting library. It reviews policies looking for problems.
- `Security Monkey <https://github.com/Netflix/security_monkey>`_ - Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
Endpoint Security