BBVA/susto

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BBVA/susto)

BBVA / susto

Systematic Universal Security Testing Orchestration

☆37

Alternatives and similar repositories for susto

Users that are interested in susto are comparing it to the libraries listed below

Sorting:

javixeneize / zasca
View on GitHub
Yet Another SCA tool
☆13Nov 10, 2022Updated 3 years ago
appsecco / kubeseco
View on GitHub
Application Security Workflow Automation using Docker and Kubernetes
☆23Dec 11, 2022Updated 3 years ago
blacklanternsecurity / spiderfoot
View on GitHub
SpiderFoot automates OSINT collection so that you can focus on analysis.
☆11Apr 20, 2023Updated 2 years ago
crashbrz / BET
View on GitHub
Burp Enterprise Toolkit
☆12Feb 25, 2022Updated 4 years ago
imperva / imperva-web-api-composer
View on GitHub
This web based application enables developers to quickly unit test individual API calls for both Incapsula and SecureSphere, as well as p…
☆19Sep 12, 2023Updated 2 years ago
testifysec / witness-examples
View on GitHub
Witness Examples
☆12Feb 27, 2024Updated 2 years ago
aaronweaver / AppSecPipeline
View on GitHub
☆13Dec 8, 2022Updated 3 years ago
ComplianceAsCode / oscal
View on GitHub
OSCAL SSP content for technologies shipped by Red Hat
☆16Mar 2, 2023Updated 3 years ago
avishayil / cf-signer
View on GitHub
Tool for signing and verifying the integrity of CloudFormation templates
☆15Feb 16, 2023Updated 3 years ago
Pr0teus / aws-trail-recon
View on GitHub
AWS Trail Recon is an idea that came up during gohacking's offensive AWS security training. The idea is to use cloudtrail:lookupevents to…
☆15May 14, 2024Updated last year
crashappsec / github-analyzer
View on GitHub
A tool to check the security settings of Github Organizations.
☆75Feb 9, 2026Updated 3 weeks ago
fguisso / devsecops-na-pratica
View on GitHub
Este repositorio é apenas um exemplo de como adicionar OWASP ZAP Actions em uma pipeline de DevOps.
☆19Mar 12, 2021Updated 4 years ago
CloudSecurityAlliance / continuous-audit-metrics
View on GitHub
Continuous Audit Metrics
☆27Jun 5, 2024Updated last year
yacwagh / FAAST
View on GitHub
Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents
☆66May 1, 2025Updated 10 months ago
chughes757 / SecureSoftwareSupplyChain
View on GitHub
This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.
☆139Jul 12, 2022Updated 3 years ago
ParsingTeam / ppsx-file-generator
View on GitHub
CVE-2017-8570 Exploit
☆21Aug 14, 2017Updated 8 years ago
DDuarte / springshell-rce-poc
View on GitHub
CVE-2022-22965 - CVE-2010-1622 redux
☆19Apr 18, 2023Updated 2 years ago
OWASP / kstg
View on GitHub
Kubernetes Security Testing Guide
☆26Apr 22, 2024Updated last year
kenhuangus / ZeroTrustAgent
View on GitHub
Zero Trust Agent
☆40Feb 2, 2026Updated last month
we45 / ZAP-Mini-Workshop
View on GitHub
Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
☆41Dec 8, 2022Updated 3 years ago
Santandersecurityresearch / corsair_scan
View on GitHub
Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
☆123Apr 14, 2023Updated 2 years ago
we45 / orchestron-community
View on GitHub
Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
☆31Nov 22, 2022Updated 3 years ago
TeamMentor / Master
View on GitHub
TEAM Mentor 3.x Released Code
☆16Aug 5, 2016Updated 9 years ago
0xdevil / CVE-2021-42008
View on GitHub
CVE-2021-42008: Exploiting A 16-Year-Old Vulnerability In The Linux 6pack Driver
☆31May 1, 2022Updated 3 years ago
flouksac / OneSOC
View on GitHub
Launch your SOC as fast as a rocket with only one command
☆12Feb 17, 2025Updated last year
0xAndre / diskover
View on GitHub
OSINT tool for domain discovery
☆10Apr 5, 2024Updated last year
magnologan / gha-devsecops
View on GitHub
DevSecOps Pipeline using SAST + DAST and SCA tools
☆73Sep 26, 2025Updated 5 months ago
brinhosa / awesome-pentest-tools-in-colab
View on GitHub
A curated list of awesome Penetration Testing Tools ported to Google Colab to make faster and easier to execute and test.
☆38Oct 31, 2024Updated last year
ibenbouzid / SkypeforBusiness_lab_V3
View on GitHub
Azure Template Skype for Business lab V3 with Edge, ADFS and PSTN Gateway
☆13May 2, 2017Updated 8 years ago
ravinduworks / vaultcloud
View on GitHub
Provisioning a highly-available Vault cluster on GCP GKE. In VaultCloud, many features are added on top of Vault core to make it fully fu…
☆10Apr 20, 2022Updated 3 years ago
nccgroup / go-pillage-registries
View on GitHub
Pentester-focused Docker registry tool to enumerate and pull images
☆114Jan 27, 2020Updated 6 years ago
GSA / oscal-js
View on GitHub
☆13Nov 18, 2025Updated 3 months ago
tenchi-security / camp
View on GitHub
CloudSplaining on AWS Managed Policies
☆44Sep 8, 2025Updated 5 months ago
iSECPartners / package-play
View on GitHub
Tool for viewing Android package details, including permissions, services, activities, and more.
☆22Nov 30, 2012Updated 13 years ago
microsoft / vsts-veracode
View on GitHub
Veracode security scanning build extension for Visual Studio Team Services
☆14Mar 8, 2016Updated 9 years ago
piercing-index / cloud-vulnerabilities
View on GitHub
☆44Oct 16, 2025Updated 4 months ago
cydea / threat-personas
View on GitHub
We borrow the concept of 'personas' from UX/service design and apply it to threat actors to improve understanding between security, techn…
☆11Jun 17, 2020Updated 5 years ago
TreetopTechie / ship-happens
View on GitHub
☆10Mar 25, 2025Updated 11 months ago
appsecpipeline / gasp-docker
View on GitHub
Simple implementation of an AppSec Pipeline using the Gasp library
☆13Sep 8, 2019Updated 6 years ago