CloudSecurityAlliance-WG / wg-DevSecOps

Related projects ⓘ

Alternatives and complementary repositories for wg-DevSecOps

• chughes29 / DoD-Federal-Government-Cloud-Computing-Resources
  A collection of DoD and Federal Government Cloud Computing Resources
  ☆48Updated 3 years ago
• PaloAltoNetworks / Prisma-Cloud-DevOps-Security
  ☆12Updated 3 years ago
• chughes29 / state-of-cloud-security
  A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.
  ☆19Updated 3 years ago
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆41Updated this week
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆114Updated 5 years ago
• stelligent / aws-devsecops-workshop
  A continuous security pipeline demo for the AWS DevSecOps Workshop.
  ☆45Updated 4 years ago
• disruptops / assess_network
  Assess certain AWS network configurations
  ☆11Updated 6 years ago
• ayeks / devsecops-reference-architectures
  A collection of DevSecOps reference architectures
  ☆64Updated 3 years ago
• dachiefjustice / aws-sec-tools
  Docker container bundling tools for manual AWS security reviews
  ☆13Updated 6 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆10Updated 3 years ago
• dome9 / onboarding-scripts
  A public repository with scripts and tools for mass / automated onboarding of cloud accounts (AWS,Azure,GCP)
  ☆23Updated 3 years ago
• CloudSecurityAlliance / continuous-audit-metrics
  Continuous Audit Metrics
  ☆24Updated 5 months ago
• GSA / security-benchmarks
  GSA Security Benchmarks and Tools
  ☆21Updated 5 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆53Updated 10 months ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆27Updated 4 months ago
• mitre / aws-foundations-cis-baseline
  InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
  ☆77Updated 5 months ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆36Updated 3 months ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆62Updated 4 years ago
• GovReady / security-stories-nist800-53
  A collection of security related user stories compatible with NIST Special Publication 800-53
  ☆34Updated 7 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆38Updated last year
• SummitRoute / isolated_network_experiment
  CDK app to setup an isolated AWS network to experiment with ways of exfiltrating data
  ☆18Updated 3 years ago
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆47Updated 7 years ago
• SummitRoute / aws_research
  Public tables and other research that can accept PRs. Please visit the web link.
  ☆44Updated 5 years ago
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆25Updated last week
• darkbitio / aws-s3-dlp
  Simple DLP monitor for AWS S3 is a tool built on top of CloudWatch events and Lambda functions to alert you when data is transferred to S…
  ☆17Updated 4 years ago
• awsdocs / aws-security-hub-user-guide
  The open source version of the AWS Security Hub documentation. To provide feedback or request changes, you can submit a pull request that…
  ☆35Updated last year
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆42Updated 3 years ago
• shehackspurple / TTT-Pushing-Left
  This repository will teach you have to do my talk "Pushing Left, Like a Boss".
  ☆69Updated 2 years ago
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆48Updated last year