Skip to content

@pumasecurity Puma Security

Change the repository type filter

All

    Repositories list

    12 repositories

    • serverless-prey

      Public
      Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
      HCL
      Mozilla Public License 2.0
      4323505Updated Oct 16, 2024Oct 16, 2024

    • puma-prey

      Public
      Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Core web applications that communicate with web services and data layer applications.
      JavaScript
      Mozilla Public License 2.0
      1620018Updated Apr 22, 2024Apr 22, 2024

    • nymeria

      Public
      Multicloud workload identity workshop
      HCL
      Mozilla Public License 2.0
      363302Updated Mar 1, 2024Mar 1, 2024

    • cosign-ecs-verify

      Public
      Lambda function for verifying signed images in ECS
      Go
      Apache License 2.0
      7007Updated May 11, 2023May 11, 2023

    • terragoat

      Public
      TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
      HCL
      Apache License 2.0
      2.4k008Updated Apr 20, 2023Apr 20, 2023

    • amaroq

      Public
      Puma Security's Amaroq is a vulnerability aggregation, orchestration, and correlation engine for network and product security tools.
      Python
      Mozilla Public License 2.0
      1100Updated Feb 1, 2023Feb 1, 2023

    • sarif-sdk

      Public
      .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs/sarif-spec)
      C#
      Other
      93000Updated Jan 26, 2023Jan 26, 2023

    • amaroq-demo

      Public
      Shell
      1001Updated Nov 6, 2022Nov 6, 2022

    • puma-scan

      Public
      Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.
      C#
      Mozilla Public License 2.0
      79446230Updated Oct 28, 2022Oct 28, 2022

    • joern2sarif

      Public
      Convert Joern/Ocular json to SARIF
      Python
      Apache License 2.0
      0000Updated Oct 25, 2022Oct 25, 2022

    • violations-lib

      Public
      Java library for parsing report files from static code analysis.
      Java
      Apache License 2.0
      39000Updated Aug 26, 2022Aug 26, 2022

    • cloud-swat-checklist

      Public
      Cloud Security SWAT Checklist
      0000Updated Jul 26, 2020Jul 26, 2020