CloudSecurityAlliance-WG / wg-DevSecOpsLinks
DevSecOps Working Group
☆12Updated 6 years ago
Alternatives and similar repositories for wg-DevSecOps
Users that are interested in wg-DevSecOps are comparing it to the libraries listed below
Sorting:
- This repository contains information about DevSecOps and how to get involved in this community effort.☆149Updated 6 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆48Updated 9 years ago
- A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.☆19Updated 4 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆279Updated last month
- ☆12Updated 4 years ago
- Repo to hold mapping of user-security-stories☆119Updated 6 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆197Updated last year
- The Secure Cloud Architecture (SCA) is a location & cloud agnostic flexible and repeatable conceptual deployment pattern that can adapt f…☆16Updated 5 years ago
- A collection of DoD and Federal Government Cloud Computing Resources☆48Updated 4 years ago
- This repository will teach you have to do my talk "Pushing Left, Like a Boss".☆70Updated 3 years ago
- OWASP Foundation Web Respository☆56Updated last month
- A continuous security pipeline demo for the AWS DevSecOps Workshop.☆44Updated 5 years ago
- A collection of DevSecOps reference architectures☆70Updated 4 years ago
- A repository for wardley maps related to security topics.☆46Updated 8 years ago
- A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results…☆94Updated last year
- OWASP Cloud Security - Enabling conversations through threat and control stories☆182Updated 6 years ago
- InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark☆77Updated 3 months ago
- CSA Guidance☆219Updated 8 years ago
- Sample DevSecOps pipelines (heavily biased on the "Sec") for various stacks and tools using open-source security tools and AWS native ser…☆73Updated 4 years ago
- Docker container bundling tools for manual AWS security reviews☆12Updated 7 years ago
- Create custom auto-remediation solutions using serverless functions in the cloud.☆55Updated 2 years ago
- Postman collections for Prisma Cloud☆76Updated last year
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆63Updated 5 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆195Updated 7 years ago
- A collection of diagramming tools to help create DevOps/DevSecOps reference architectures☆77Updated 2 years ago
- The Auditree framework tool to run compliance control checks as unit tests.☆72Updated last year
- A docker container to simplify and secure the use of Infrastructure as Code (IaC)☆78Updated this week
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations☆40Updated 3 weeks ago
- A collection of awesome security controls mapping for solutions across frameworks.☆57Updated 5 years ago