CloudSecurityAlliance / CSA-Guidance

Related projects: ⓘ

• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆185Updated 6 years ago
• center-for-threat-informed-defense / security-stack-mappings
  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…
  ☆379Updated 5 months ago
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆112Updated 5 years ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆175Updated 5 years ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆61Updated 4 years ago
• simonec73 / threatsmanager
  Threats Manager Platform Core libraries and SDK
  ☆69Updated 2 weeks ago
• shehackspurple / TTT-Pushing-Left
  This repository will teach you have to do my talk "Pushing Left, Like a Boss".
  ☆69Updated 2 years ago
• brianwifaneye / NIST-CSF
  NIST CyberSecurity Framework management tool
  ☆155Updated 2 years ago
• devsecops / devsecops
  This repository contains information about DevSecOps and how to get involved in this community effort.
  ☆146Updated 5 years ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆271Updated last week
• trevorbryant / awesome-controls
  A collection of awesome security controls mapping for solutions across frameworks.
  ☆48Updated 4 years ago
• phantomcyber / playbooks
  Phantom Community Playbooks
  ☆467Updated last month
• AzureArchitecture / threat-model-templates
  Templates for the Microsoft Threat Modeling Tool
  ☆138Updated 2 years ago
• microsoft / threat-modeling-templates
  Microsoft Threat Modeling Template files
  ☆177Updated last year
• hysnsec / DevSecOps-Studio
  ☆414Updated this week
• product-security-group / Security_Ladders
  Open source security career ladders
  ☆114Updated last year
• cisagov / bad-practices
  CISA's catalog of bad practices that are exceptionally risky.
  ☆202Updated 3 months ago
• mike-goodwin / owasp-threat-dragon
  An open source, online threat modelling tool from OWASP
  ☆481Updated 2 months ago
• OWASP / www-project-threat-and-safeguard-matrix
  OWASP Foundation Web Respository
  ☆22Updated 10 months ago
• nccgroup / azucar
  Security auditing tool for Azure environments
  ☆556Updated last year
• GovReady / security-stories-nist800-53
  A collection of security related user stories compatible with NIST Special Publication 800-53
  ☆32Updated 7 years ago
• usnistgov / oscal-content
  NIST SP 800-53 content and other OSCAL content examples
  ☆292Updated 2 weeks ago
• Azure / Cloud-Katana
  Unlocking Serverless Computing to Assess Security Controls
  ☆242Updated 6 months ago
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆396Updated 2 years ago
• mykter / aws-security-cert-service-notes
  Security aspects of AWS products for the Security Specialist certification
  ☆207Updated 2 years ago
• GSA / fedramp-automation
  FedRAMP Automation
  ☆272Updated this week
• OWASP / www-project-cyber-defense-matrix
  Documentation on the Cyber Defense Matrix
  ☆24Updated last year
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆282Updated 3 months ago
• kmcquade / awesome-azure-security
  A curated list of awesome Microsoft Azure Security tools, guides, blogs, and other resources.
  ☆326Updated 11 months ago
• mitre-attack / attack-datasources
  This content is analysis and research of the data sources currently listed in ATT&CK.
  ☆402Updated last year