Name: Cyber Security Group, GovTech Singapore
Type: User
Company: GovTech Singapore
Bio: CSG's mandate is to protect the Singapore Government's ICT systems.
The code we share here can help keep you safer too.
Twitter: GovTechSG
Location: 10 Mapletree Business City, Singapore
Blog: https://medium.com/csg-govtech
Cyber Security Group, GovTech Singapore's Projects
BurpSuite Extension: A one-stop pen testing checklist and logger tool
This project aims to educate developers to implement secure local biometric authentication on Android devices
This package contains a Django application that nullifies the effects of unsafe Python or Django functions (e.g. os.system), and logs all invocations of dangerous functions by default.
Package containing a Django app that protects your application against dangerous requests (SSRF).
Provides functionality to enforce permissions checks on users when they attempt to perform actions on a Django `Model` object (e.g. if a request accesses a view that tries to read a set of objects from the database).
Package that provides integration between Django and AWS Secrets Manager for the management of DB credentials (MySQL and PostgreSQL) and Django secret key.
Django middleware to validate user file uploads, detect specially crafted media files with malicious intent and block them.
Package that generates random primary keys for Django model objects to help prevent IDOR vulnerabilities.
Package that modifies Django's default behaviour such that all views are "private" by default (i.e. inaccessible to all, whether authenticated or not). Acts as an extra layer of defense against coding mistakes or misconfigurations.
This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.
The Web Security Testing Guide is a comprehensive open source guide to testing the security of web applications and web services.
The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.