Alternatives and similar repositories for asvs:

Users that are interested in asvs are comparing it to the libraries listed below

• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 5 years ago
• twilio-labs / gordon
  Gordon is status check Github app to enforce and validate about.yaml file specifications in a repository during pull requests to drive co…
  ☆20Updated last month
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆124Updated last year
• darkbitio / aws-s3-dlp
  Simple DLP monitor for AWS S3 is a tool built on top of CloudWatch events and Lambda functions to alert you when data is transferred to S…
  ☆17Updated 5 years ago
• secmerc / materialize-threats
  ☆63Updated 2 years ago
• disruptops / assess_network
  Assess certain AWS network configurations
  ☆11Updated 6 years ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 5 years ago
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆48Updated 8 years ago
• dowjones / reapsaw
  Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …
  ☆41Updated 4 years ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆179Updated 6 years ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆44Updated 4 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 7 months ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆106Updated 6 years ago
• hp271 / awesome-dev-first-security
  A curated collection of tools and resources for building security with a developer first approach.
  ☆28Updated 2 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆39Updated 2 years ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• jchrisfarris / detect-credential-compromise
  Cloudformation Template and Lambda to detect if Instance Profile credentials are being used outside your AWS Account.
  ☆28Updated 5 years ago
• paypal / scorebot
  ☆57Updated 4 years ago
• wurstbrot / security-pins
  Pin designs for security related items
  ☆37Updated 10 months ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆35Updated 3 years ago
• Santandersecurityresearch / DrHeader
  drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
  ☆110Updated 2 months ago
• Appliscale / cloud-security-audit
  A command line security audit tool for Amazon Web Services
  ☆81Updated 6 years ago
• pownjs / git
  Assorted tools for security-related task for git repositories
  ☆59Updated 2 years ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆35Updated 9 months ago
• owaspsamm / dashboard-webapp
  ☆21Updated 3 years ago
• mitre / aws-foundations-cis-baseline
  InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
  ☆78Updated 3 months ago
• pseudo-security / slacksecrets
  Scans Slack for API tokens, credentials, passwords, and more using YARA rules
  ☆39Updated 4 years ago
• goldfiglabs / sgCheckup
  sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
  ☆81Updated 3 years ago