Checkmarx / ast-cli

Related projects: ⓘ

• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆24Updated 2 months ago
• OpenSecuritySummit / oss-website
  The Open Security Summit is focused on the collaboration between, Developers and Application Security
  ☆44Updated this week
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆54Updated 2 months ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆36Updated 3 years ago
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆93Updated 9 months ago
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆52Updated last year
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆88Updated this week
• bridgecrewio / cfngoat
  Cfngoat is Bridgecrew's "Vulnerable by Design" Cloudformation repository. Cfngoat is a learning and training project that demonstrates ho…
  ☆91Updated last month
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 3 years ago
• OWASP / www-project-kubernetes-security-testing-guide
  OWASP Kubernetes Security Testing Guide
  ☆37Updated 2 weeks ago
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆46Updated 7 years ago
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆58Updated 3 months ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆61Updated 11 months ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 4 months ago
• krol3 / kubernetes-security-checklist
  Awesome resources about Security in Kubernetes
  ☆40Updated last year
• iriusrisk / Community
  IriusRisk Community
  ☆62Updated last year
• bridgecrewio / cdkgoat
  CdkGoat is Bridgecrew's "Vulnerable by Design" AWS CDK repository. CdkGoat is a learning and training project that demonstrates how commo…
  ☆43Updated last year
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆40Updated last year
• OWASP / threat-modeling-playbook
  ☆28Updated 2 years ago
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆47Updated this week
• BBVA / susto
  Systematic Universal Security Testing Orchestration
  ☆37Updated 2 years ago
• OWASP / www-project-integration-standards
  OWASP Foundation Web Respository
  ☆26Updated 3 weeks ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆79Updated 2 weeks ago
• OWASP / www-project-cloud-native-application-security-top-10
  OWASP Foundation Web Respository
  ☆33Updated 2 weeks ago
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆34Updated 2 years ago
• chughes29 / state-of-cloud-security
  A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.
  ☆19Updated 3 years ago
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆68Updated last week
• wiz-sec-public / peach-framework
  PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…
  ☆65Updated last year
• we45 / Gauge-OWASP-ZAP
  Example of using Gauge and OWASP ZAP for test automation
  ☆10Updated 4 years ago