DefectDojo / sample-scan-files
Sample scan files for testing DefectDojo imports
☆75Updated last week
Related projects ⓘ
Alternatives and complementary repositories for sample-scan-files
- Python API library for DefectDojo☆40Updated last year
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆187Updated 6 years ago
- Container Security Verification Standard☆57Updated 5 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆46Updated 7 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆71Updated 3 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆104Updated 9 months ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)☆30Updated last year
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated this week
- Software Component Verification Standard (SCVS)☆134Updated 6 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆55Updated 4 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆45Updated 2 years ago
- ☆121Updated last year
- ☆79Updated 3 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated last year
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆274Updated 2 weeks ago
- 🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment☆148Updated 3 years ago
- OWASP Kubernetes Security Testing Guide☆37Updated 2 months ago
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 2 months ago
- Repo to hold mapping of user-security-stories☆113Updated 5 years ago
- VMC: a Scalable, Open Source and Free Vulnerability Management Platform☆82Updated 3 weeks ago
- All-in-one tool for managing vulnerability reports from AppSec pipelines☆105Updated last year
- AppSecPipeline Specification for DevOps automation.☆38Updated last year
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- ☆61Updated last year
- A utility to (re-)import findings and language data into DefectDojo☆42Updated last month
- ☆30Updated 2 years ago
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 3 years ago
- ☆36Updated 3 years ago
- This project is about creating and publishing threat model examples.☆408Updated 3 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆177Updated 5 years ago