Fabric is an open-source framework for augmenting humans using AI. It provides a modular system for solving specific problems using a crowdsourced set of AI prompts that can be used anywhere.

Threat Designer is a GenerativeAI application designed to automate and streamline the threat modeling process for secure system design.

A fast MoE impl for PyTorch

A curated list of roadmaps.

An orchestration platform for the development, production, and observation of data assets.

SecretBench is a dataset consisting of different secret types collected from public open-source repositories.

A curated list of GPT agents for cybersecurity

An MLOps framework to package, deploy, monitor and manage thousands of production machine learning models

Secure, cross-platform Git credential storage with authentication to GitHub, Azure Repos, and other popular Git hosting services.

Secure Git credential storage for Windows with support for Visual Studio Team Services, GitHub, and Bitbucket multi-factor authentication.

CredSweeper is a tool to detect credentials in any directories or files. CredSweeper could help users to detect unwanted exposure of credentials (such as token, passwords, api keys etc.) in advance…

CredData is a set of files including credentials in open source projects. CredData includes suspicious lines with manual review results and more information such as credential types for each suspic…

The best way to write secure and reliable applications. Write nothing; deploy nowhere.

A suite of tools to automate software compliance checks.

Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.

The source files and tools needed to build the OWASP Cornucopia decks in various languages

Web and mobile application security training platform

A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models 🔒

An online multiplayer version of the Elevation of Privilege (EoP) threat modeling card game

Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.

Supply-chain Levels for Software Artifacts

pre-commit git hooks to take care of Terraform configurations 🇺🇦

A python wrapper for the GitLab API.

A vulnerability scanner for container images and filesystems

Bandit is a tool designed to find common security issues in Python code.

A collection of useful .gitignore templates

🔒 Python 3.X client for HashiCorp Vault

A configurable command-line interface tool (and python library) to interact with Hashicorp Vault

secureCodeBox (SCB) - continuous secure delivery out of the box