From 15e327300330c95bfc32aea6176c6ebdfce3a0fe Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Stjepan=20Jurekovi=C4=87?= Date: Mon, 12 Apr 2021 12:02:08 +0200 Subject: [PATCH 1/3] Spring Boot in Practice by Somnath Musib Hi, I thought this title might be a great addition to your list of resources/videos/books. Thank you for your consideration. --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index d54d83a..b4e2692 100644 --- a/README.md +++ b/README.md @@ -375,6 +375,7 @@ Provided data: IPv4 hosts, sub/domains/whois, ports/banners/protocols, technolog - [Real World Cryptography](https://www.manning.com/books/real-world-cryptography) - This early-access book teaches you applied cryptographic techniques to understand and apply security at every level of your systems and applications. - [AWS Security](https://www.manning.com/books/aws-security?utm_source=github&utm_medium=organic&utm_campaign=book_shields_aws_1_31_20) - This early-access book covers commong AWS security issues and best practices for access policies, data protection, auditing, continuous monitoring, and incident response. - [The Art of Network Penetration Testing](https://www.manning.com/books/the-art-of-network-penetration-testing) - Book that is a hands-on guide to running your own penetration test on an enterprise network. (early access, published continuously, final release December 2020) +- [Spring Boot in Practice](https://www.manning.com/books/spring-boot-in-practice) - Book that is a practical guide which presents dozens of relevant scenarios in a convenient problem-solution-discussion format.. (early access, published continuously, final release fall 2021) ## Other Awesome Lists From e154f0ee1bfea276e980f2a7826ca6b1dd53bb08 Mon Sep 17 00:00:00 2001 From: Flavian Hautbois Date: Mon, 23 Aug 2021 12:47:27 +0200 Subject: [PATCH 2/3] Add a social engineering tool: Gophish --- README.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/README.md b/README.md index 2aca6c2..beff9f3 100644 --- a/README.md +++ b/README.md @@ -30,6 +30,7 @@ Thanks to all [contributors](https://github.com/sbilly/awesome-security/graphs/c - [Mobile / Android / iOS](#mobile--android--ios) - [Forensics](#forensics) - [Threat Intelligence](#threat-intelligence) + - [Social Engineering](#social-engineering) - [Web](#web) - [Organization](#organization) - [Web Application Firewall](#web-application-firewall) @@ -254,6 +255,10 @@ Thanks to all [contributors](https://github.com/sbilly/awesome-security/graphs/c - [MISP - Open Source Threat Intelligence Platform ](https://www.misp-project.org/) - MISP threat sharing platform is a free and open source software helping information sharing of threat intelligence including cyber security indicators. A threat intelligence platform for gathering, sharing, storing and correlating Indicators of Compromise of targeted attacks, threat intelligence, financial fraud information, vulnerability information or even counter-terrorism information. The MISP project includes software, common libraries ([taxonomies](https://www.misp-project.org/taxonomies.html), [threat-actors and various malware](https://www.misp-project.org/galaxy.html)), an extensive data model to share new information using [objects](https://www.misp-project.org/objects.html) and default [feeds](https://www.misp-project.org/feeds/). - [PhishStats](https://phishstats.info/) - Phishing Statistics with search for IP, domain and website title. +## Social Engineering + +- [Gophish](https://getgophish.com/) - An Open-Source Phishing Framework. + ## Web ### Organization From 00077fa40f33fa6590ec624a548c4fafb4e0600a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Stjepan=20Jurekovi=C4=87?= Date: Thu, 9 Sep 2021 16:17:50 +0200 Subject: [PATCH 3/3] Added Making Sense of Cyber Security Hi, Stjepan from Manning here. i thought this title might be a good match for your list. Thank you for considering it. Best, --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index b4e2692..cc0fca7 100644 --- a/README.md +++ b/README.md @@ -298,6 +298,7 @@ Provided data: IPv4 hosts, sub/domains/whois, ports/banners/protocols, technolog - [Checkov](https://github.com/bridgecrewio/checkov/) - A static analysis tool for infrastucture as code (Terraform). - [KICS](https://github.com/Checkmarx/kics) - Scans IaC projects for security vulnerabilities, compliance issues, and infrastructure misconfiguration. Currently working with Terraform projects, Kubernetes manifests, Dockerfiles, AWS CloudFormation Templates, and Ansible playbooks. - [Insider CLI](https://github.com/insidersec/insider) - A open source Static Application Security Testing tool (SAST) written in GoLang for Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C# and Javascript (Node.js). +- [Making Sense of Cyber Security](https://www.manning.com/books/making-sense-of-cyber-security) - A jargon-free, practical guide to the key concepts, terminology, and technologies of cybersecurity perfect for anyone planning or implementing a security strategy. (early access, published continuously, final release early 2022) ## Exploits & Payloads