Security Training
Showing 26 of 26 projects
An open-source platform for hosting Jeopardy and King of the Hill style Capture the Flag competitions.
A comprehensive, free information security reference covering techniques, tools, tactics, and resources for learning and professional development.
A curated list of awesome information security courses, training resources, and hands-on labs for cybersecurity professionals and students.
An intentionally vulnerable Kubernetes cluster environment for hands-on security training and practice.
A comprehensive university course repository for learning malware analysis through hands-on labs and real-world samples.
A 'Vulnerable by Design' cloud deployment tool for creating and completing capture-the-flag style security scenarios on AWS and Azure.
A collection of 200 Windows EVTX event log samples mapped to MITRE ATT&CK techniques for detection testing and threat hunting.
A phishing campaign toolkit for simulating real-world attacks to test and promote user security awareness.
A deliberately vulnerable CI/CD environment with 11 challenges to learn and practice CI/CD security.
A vulnerable Node.js web application designed to teach how to identify and fix OWASP Top 10 security vulnerabilities.
A curated list of DevSecOps tools, resources, and training materials for integrating security into the development lifecycle.
An OWASP training app with 62 challenges demonstrating real-world secrets management mistakes and how to find them.
A vulnerable-by-design Terraform repository for learning cloud security misconfigurations across AWS, Azure, and GCP.
A virtual machine for Android application security assessment, reverse engineering, and malware analysis.
An intentionally insecure Android app designed to teach secure coding and penetration testing through hands-on vulnerability challenges.
A modular, menu-driven tool for building time-delayed, distributed security event chains for Red, Blue, and Purple Team exercises.
A CLI tool to export OWASP Juice Shop security challenges into CTFd, RootTheBox, or FBCTF compatible formats.
A lightweight, fast, and scalable CTF (Capture The Flag) competition engine written in PHP.
An open-source platform for creating and managing fake phishing campaigns to train users and improve reporting.
A curated collection of Capture The Flag (CTF) competition writeups for cybersecurity learning and practice.
A deliberately insecure OpenWrt-based firmware designed to teach IoT security testing through hands-on vulnerability challenges.
A curated list of security card games and tabletop exercises for training and discussion.
A practical classroom course suite teaching cyber defense monitoring using Suricata and Arkime for threat detection and packet analysis.
A vulnerable-by-design CloudFormation template for learning and testing infrastructure-as-code security scanning tools.
Open-source application security training materials including presentations and hands-on labs from Duo Security.
A security incident response card game that trains defenders through fictional scenarios and activity-based gameplay.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.