* @shehackspurple & @j_opdenakker on getting into security
* Google's BeyondProd & code provenance (thx @MayaKaczorowski)
* Cloud, API, and file access bug security tools
... and I've got something big planned next week, stay tuned 🤫
tldrsec.com/blog/tldr-sec-…
🌎Terraform scripts:
* github.com/liamg/tfsec
* github.com/bridgecrewio/c…
* github.com/cesar-rodrigue…
☁️CloudFormation templates:
* github.com/Skyscanner/cfr…
* github.com/stelligent/cfn…
Docker container that wraps 7 other #AWS security tools:
github.com/z0ph/aws-secur…
Automatic API attack tool that takes API specs as input:
github.com/imperva/automa…
Finding file access bugs:
github.com/google/path-au…
and your New Year's Resolution is to keep up with the latest and greatest in #security 🎆
you should check out the tl;dr sec newsletter 📚
(and at $0, it's way cheaper than a gym membership 💪)
tldrsec.com