a-h/default.md

Last active August 20, 2019 22:13

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/a-h/e5558b35a1e24cc6950406e45ef0d646.js"></script>
Save a-h/e5558b35a1e24cc6950406e45ef0d646 to your computer and use it in GitHub Desktop.

Download ZIP

Tools

Raw

Serverless to HTTP Handler:

https://github.com/akrylysov/algnhsa

Password hashing:

https://godoc.org/golang.org/x/crypto/bcrypt

Encrypted cookies:

https://github.com/gorilla/securecookie

OAuth2 library:

https://github.com/golang/oauth2

JWT tool:

https://jwt.io

Go JWT library:

https://github.com/dgrijalva/jwt-go

Cognito authorizer (uses github.com/dgrijalva/jwt-go):

https://github.com/welldigital/cognito-authorization

Gosec:

https://github.com/securego/gosec

Dependabot for pull requests:

https://dependabot.com

Quay.io for container analysis:

https://quay.io

snyk.io for dependency analysis:

https://snyk.io

RDS and secrets manager connector:

https://github.com/a-h/go-sql-driver-rds-credentials

NIST notifier:

https://github.com/a-h/nvdnotifier

ScoutSuite:

https://github.com/nccgroup/ScoutSuite

OWASP Zap test tool:

https://www.owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project

CORS headers:

https://github.com/rs/cors

Disable caching and sniffin:

HSTS middleware:

https://github.com/a-h/hsts
(Consider https://github.com/unrolled/secure)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment