CloudSecurityAlliance-WG / wg-DevSecOpsLinks
DevSecOps Working Group
☆12Updated 6 years ago
Alternatives and similar repositories for wg-DevSecOps
Users that are interested in wg-DevSecOps are comparing it to the libraries listed below
Sorting:
- This repository contains information about DevSecOps and how to get involved in this community effort.☆149Updated 6 years ago
- A collection of DoD and Federal Government Cloud Computing Resources☆48Updated 4 years ago
- A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.☆19Updated 4 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆279Updated last month
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆48Updated 8 years ago
- OWASP Foundation Web Respository☆56Updated last month
- The Secure Cloud Architecture (SCA) is a location & cloud agnostic flexible and repeatable conceptual deployment pattern that can adapt f…☆16Updated 5 years ago
- CSA Guidance☆218Updated 8 years ago
- Repo to hold mapping of user-security-stories☆119Updated 6 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆56Updated 7 months ago
- a curated list of useful threat modeling resources☆140Updated last year
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆197Updated last year
- A repository for wardley maps related to security topics.☆46Updated 8 years ago
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.☆164Updated 2 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆182Updated 6 years ago
- Documentation on the Cyber Defense Matrix☆24Updated 2 years ago
- This repository will teach you have to do my talk "Pushing Left, Like a Boss".☆70Updated 3 years ago
- A docker container to simplify and secure the use of Infrastructure as Code (IaC)☆78Updated last week
- InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark☆77Updated 2 months ago
- A continuous security pipeline demo for the AWS DevSecOps Workshop.☆44Updated 5 years ago
- Create custom auto-remediation solutions using serverless functions in the cloud.☆54Updated 2 years ago
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations☆40Updated last week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆177Updated 11 months ago
- ☆12Updated 4 years ago
- ☆27Updated 11 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆195Updated 7 years ago
- A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results…☆94Updated last year
- Automate the creation of a System Security Plan (SSP)☆43Updated 4 months ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆45Updated 5 years ago