Projects

Open Source Cybersecurity Training

Free, Interactive Security Training Platform

A comprehensive, gamified training platform covering phishing, social engineering, privacy awareness, and secure coding - completely free and open source.

Launch Training 🚀

Features:

• 6 Interactive Modules: Phishing/Smishing/Vishing, CEO Fraud, Watering Hole Attacks, General Security, Privacy, and Secure Coding
• 50+ Interactive Slides: Hands-on simulations with instant feedback
• SCORM Compatible: Deploy in any LMS with full tracking
• No Login Required: Progress saved in browser localStorage
• Fully Customizable: Fork, customize, and deploy for your organization

Developer: Emre Ugurlu

Contribute: This project is open source! View on GitHub to contribute improvements, report issues, or fork for your organization.

GRC Engineering Lab Builder

Free, AI-Powered GRC Learning Platform

Generate hyper-personalized GRC Engineering learning labs in 5 minutes using Claude or ChatGPT. Build automation projects, master prompt engineering, and level up your career - completely free and open source.

Generate My Prompts 🚀

Features:

• 3 Career Scenarios: Employed (solve work problems), Job Seeking (build portfolio), Career Transition (quick wins in first 90 days)
• Personalized Prompts: Tailored to your role, technical level, available time, and specific challenges
• Works with Any AI: Claude, ChatGPT, Gemini - use your preferred AI assistant
• No API Keys Needed: Use your own AI account, no signup required
• Privacy First: Your data never leaves your browser, completely local
• Real Results: Users have automated SOC 2 reviews, reducing time from 3 hours to 30 minutes

Developer: Ayoub Fandi

Contribute: This project is open source! View on GitHub to contribute improvements, report issues, or fork for your organization.

How to Harden

SaaS Security Hardening Guides

Community-driven, open-source security hardening guidance for cloud services. Focus on integration security and supply chain attack prevention through first-party controls you can implement independently.

View Guides 🔒

Features:

• Platform-Specific Guides: Hardening documentation for Salesforce, Microsoft 365, GitHub, Google Workspace, Slack, and Okta
• GUI & Infrastructure-as-Code: Each guide available in both UI-based and IaC formats
• Integration Security Focus: Restrict third-party integrations with IP allowlisting and vendor access controls
• Real-World Attack Mapping: Documents supply chain incidents and maps them to specific preventive controls
• Beyond CIS Benchmarks: Fills the gap in SaaS-specific integration controls and vendor risk mitigation
• Alpha Stage: Actively seeking contributors across security, development, and research domains

Developer: Justin Pagano

Contribute: This project is open source! View on GitHub to contribute improvements, report issues, or fork for your organization.

GigaChad GRC

GRC Engineering Automation Framework

A powerful framework for automating governance, risk, and compliance workflows - completely free and open source.

View Project 🚀

Features:

• Automation-First: Streamline repetitive GRC tasks and workflows
• Open Source: Fully transparent and customizable to your needs
• Modern Architecture: Built with best practices for reliability and scalability
• Community-Driven: Collaborate with GRC professionals to build better tools

Developer: Chad Fryer

Contribute: This project is open source! View on GitHub to contribute improvements, report issues, or fork for your organization.