IBM / asoc-devops-tooling
This project will provide DevOps automation in the form of snippets, sample apps, and plugins in support of integrating with IBM Application Security on Cloud for automated security scans of software projects using popular tools and frameworks across the DevOps landscape.
☆13Updated last year
Alternatives and similar repositories for asoc-devops-tooling:
Users that are interested in asoc-devops-tooling are comparing it to the libraries listed below
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated 10 months ago
- ☆20Updated 6 years ago
- An extreme bootcamp to enable teams to build DevSecOps into their environment.☆9Updated 8 years ago
- AppSecPipeline Specification for DevOps automation.☆39Updated 2 years ago
- Your infrastructure is moving and so is your root of trust. This project helps to define a new control plane for locking down access and…☆9Updated 8 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 6 years ago
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 3 years ago
- A command line security audit tool for Amazon Web Services☆81Updated 6 years ago
- ☆17Updated 5 months ago
- OSCAL SSP content for technologies shipped by Red Hat☆15Updated 2 years ago
- DevSecOps Toolchain☆111Updated 7 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆48Updated 8 years ago
- DefectDojo Community Content☆17Updated 5 months ago
- Container Security Verification Standard☆58Updated 5 years ago
- A platform to create, catalog and deploy tests for tools such as Gauntlt, AttackIQ and Metasploit.☆16Updated 8 years ago
- Controls for Amazon Web Services☆26Updated 5 years ago
- An AWS cross-account tool to support human access with MFA for the CLI and GUI.☆19Updated 6 years ago
- Taking FedRAMP templates to Markdown☆9Updated 3 years ago
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project…☆110Updated last year
- Posture Attribute Collection and Evaluation☆23Updated last year
- ☆14Updated 7 years ago
- A documentation and tracking project with the goal of making package management systems more secure.☆50Updated 4 years ago
- Open Security Summit 2018☆29Updated 4 years ago
- DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications☆35Updated 3 years ago
- Landing Page Content/Builder for MITRE Security Automation Framework☆28Updated last month
- SEDATED® Project (Sensitive Enterprise Data Analyzer To Eliminate Disclosure)☆111Updated 2 months ago
- The Auditree tool for adding external evidence.☆10Updated 6 months ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆44Updated 3 months ago
- Public tables and other research that can accept PRs. Please visit the web link.☆44Updated 5 years ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 9 months ago