Skip to content

@pumasecurity Puma Security

Change the repository type filter

All

    Repositories list

    14 repositories

    • puma-prey

      Public
      Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Core web applications that communicate with web services and data layer applications.
      JavaScript
      Mozilla Public License 2.0
      1621018Updated Aug 26, 2025Aug 26, 2025

    • nymeria

      Public
      Cross cloud workload identity research and workshops
      HCL
      Mozilla Public License 2.0
      384102Updated Jul 22, 2025Jul 22, 2025

    • serverless-prey

      Public
      Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
      HCL
      Mozilla Public License 2.0
      4324805Updated Jul 17, 2025Jul 17, 2025

    • puma-scan-pro-action

      Public
      Puma Scan Pro GitHub Action
      Shell
      Mozilla Public License 2.0
      0000Updated Jun 6, 2025Jun 6, 2025

    • hth-village-24

      Public
      Hackers Teaching Hackers (HTH) 2024 - Kubernetes Village
      CSS
      1000Updated Nov 14, 2024Nov 14, 2024

    • cosign-ecs-verify

      Public
      Lambda function for verifying signed images in ECS
      Go
      Apache License 2.0
      7007Updated May 11, 2023May 11, 2023

    • terragoat

      Public
      TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
      HCL
      Apache License 2.0
      5.5k008Updated Apr 20, 2023Apr 20, 2023

    • amaroq

      Public
      Puma Security's Amaroq is a vulnerability aggregation, orchestration, and correlation engine for network and product security tools.
      Python
      Mozilla Public License 2.0
      1100Updated Feb 1, 2023Feb 1, 2023

    • sarif-sdk

      Public
      .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs/sarif-spec)
      C#
      Other
      97000Updated Jan 26, 2023Jan 26, 2023

    • amaroq-demo

      Public
      Shell
      1001Updated Nov 6, 2022Nov 6, 2022

    • puma-scan

      Public
      Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.
      C#
      Mozilla Public License 2.0
      79451230Updated Oct 28, 2022Oct 28, 2022

    • joern2sarif

      Public
      Convert Joern/Ocular json to SARIF
      Python
      Apache License 2.0
      0000Updated Oct 25, 2022Oct 25, 2022

    • violations-lib

      Public
      Java library for parsing report files from static code analysis.
      Java
      Apache License 2.0
      42000Updated Aug 26, 2022Aug 26, 2022

    • cloud-swat-checklist

      Public
      Cloud Security SWAT Checklist
      0000Updated Jul 26, 2020Jul 26, 2020