security-tools

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

Description

When you run the trivy k8s command, there is no option to specify an alternative kubeconfig file path.
By default, the kubeconfig file resides in $HOME/.kube/config.
However, users of Kubernetes often need to specify a different path, using a parameter like --kubeconfig on the kubectl command.

If you don't have the kubeconfig in the default filesystem path, then

Is your feature request related to a problem? Please describe.
It would be nice if gitleaks had a validate command that would validate examples found in the config rules. Introducing such a feature would speed up rule development and help with debugging.

Describe the solution you'd like
example entry in the rules tables
ex:

[[rules]]
id = "discord-client-secret"
des

Is your feature request related to a problem? Please describe.
Currently a hard refresh of the Index page is required in order to load the new index list and stats.

Describe the solution you'd like
A refresh button will help get the latest index list and stats.

Describe alternatives you've considered
None

Additional context
None

Hi & welcome to Scapy's github ! This page lists issues that you can try to fix if you want to start contributing to Scapy.

Disclaimer

The BEST way to contribute to Scapy is to play around with it, to find and fix broken stuff by yourself, i.e. Before you attempt to fix one of those pesky issues, just HAVE FUN with Scapy !😺

By using Scapy in your work, experiments, hacks, course

RustScan has an accessible mode, rustscan --accessible which should promise not to have any weird ASCII text in it.

Write CI that runs RustScan with --accessible a few times, with different flags / options and check the terminal output to see if it contains one of these:

[!]
[~]
[>]
| {}

If any of these characters appear in any of the tests, fail the CI. E

We need Vagrant docs, you can find it here https://github.com/NullArray/AutoSploit/tree/dev-beta/Vagrant

The recommendation is to set Cache-Control: private, no-store on any endpoint with sensitive information. Because while you can protect the traffic with TLS, you also need to keep sensitive information out of a client's (unencrypted) HTTP cache. I'm not sure how relevant this is to the API context of step-ca though—I've never seen an HTTP client library that caches content. But I guess the poi

Hey, here we need add url decoding cuz that invalid link with symbols of get request like ?, &, = etc

p.s thx for awesome tool

Describe the bug
A clear and concise description of what the bug is.

To Reproduce
Steps to reproduce the behavior:

create .bandit file with content:

[bandit]
tests: B101,B102,B301

run bandit -c .bandit -r module/
get error:
[main] ERROR .bandit : Error parsing file.

Expected behavior
working as described in readme

Bandit version

ba

security-tools

Here are 2,845 public repositories matching this topic...

aquasecurity / trivy

Description

zricethezav / gitleaks

CISOfy / lynis

zinclabs / zinc

future-architect / vuls

qeeqbox / social-analyzer

Lissy93 / personal-security-checklist

smicallef / spiderfoot

secdev / scapy

Disclaimer

The BEST way to contribute to Scapy is to play around with it, to find and fix broken stuff by yourself, i.e. Before you attempt to fix one of those pesky issues, just HAVE FUN with Scapy !😺

By using Scapy in your work, experiments, hacks, course

fail2ban / fail2ban

toniblyx / my-arsenal-of-aws-security-tools

RustScan / RustScan

presidentbeef / brakeman

securego / gosec

prowler-cloud / prowler

guardicore / monkey

1N3 / Sn1per

liamg / traitor

NullArray / AutoSploit

smallstep / certificates

yogeshojha / rengine

PyCQA / bandit

google / syzkaller

microsoft / ApplicationInspector

drk1wi / Modlishka

j3ssie / osmedeus

urbanadventurer / WhatWeb

OlivierLaflamme / Cheatsheet-God

mzet- / linux-exploit-suggester

trimstray / htrace.sh