Alternatives and similar repositories for 2ms

Users that are interested in 2ms are comparing it to the libraries listed below

• opengrep / opengrep-rules
  ☆76Updated 5 months ago
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆128Updated 3 months ago
• apiiro / malicious-code-ruleset
  Focused malicious code detection ruleset, with a high protection-to-noise ratio
  ☆122Updated 4 months ago
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆187Updated 3 months ago
• nccgroup / ccs
  ☆111Updated 2 years ago
• TinderSec / gh-workflow-auditor
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆156Updated 10 months ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆306Updated 2 weeks ago
• klarna-incubator / gram
  Gram is Klarna's own threat model diagramming tool
  ☆319Updated this week
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆119Updated last year
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆293Updated 5 months ago
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆92Updated last year
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆39Updated 7 months ago
• vishalgarg-sec / Software-Supply-Chain-Security
  A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…
  ☆136Updated last year
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆97Updated 5 months ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆133Updated 3 months ago
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆70Updated 3 weeks ago
• snyk-labs / github-actions-scanner
  Scans your Github Actions for security issues
  ☆77Updated this week
• xvnpw / ai-threat-modeling-action
  AI featured threat modeling and security review action
  ☆44Updated 8 months ago
• ReversecLabs / IceKube
  ☆179Updated 2 months ago
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆208Updated this week
• adeptex / whispers
  Identify hardcoded secrets in static structured text (version 2)
  ☆91Updated 5 months ago
• OWASP / www-project-devsecops-verification-standard
  OWASP Foundation Web Respository
  ☆45Updated last month
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆46Updated 2 years ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆220Updated last month
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆105Updated 5 months ago
• red-kite-solutions / stalker
  Stalker, the Extensible Attack Surface Management tool.
  ☆86Updated last month
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆89Updated 2 months ago
• smithy-security / smithy
  The security workflow engine!
  ☆118Updated this week
• Checkmarx / capital
  A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Sec…
  ☆294Updated last year