#
SPoint42
Follow
Starred repositories
An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
Scrape domain names from SSL certificates of arbitrary hosts
A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.
Every product, feature and service in the Azure family.
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRIDE methodology.
Shostack's 4 Question Frame for Threat Modeling
Microsoft Sentinel SOC Operations
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
🔒 A free, open-source platform dedicated to understand and secure GraphQL applications — all directly in your browser!
Tools and Techniques for Blue Team / Incident Response
Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
A curated list of amazingly awesome Burp Extensions
A small collection of vulnerable code snippets
Small, fast tool for performing reverse DNS lookups en masse.
This repository list a maximum of tech conferences's date and CFP in order to help conferences organizers, speakers & attendees
HardeningKitty and Windows Hardening Settings
AzureGoat : A Damn Vulnerable Azure Infrastructure
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).