JavierOlmedo / OWASP-Calculator
🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
☆156Updated 3 years ago
Alternatives and similar repositories for OWASP-Calculator:
Users that are interested in OWASP-Calculator are comparing it to the libraries listed below
- SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.☆220Updated 2 years ago
- ☆82Updated 3 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- GCP GOAT is the vulnerable application for learn the GCP Security☆63Updated last year
- ☆122Updated last year
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 5 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆61Updated 7 months ago
- PatrowlHears - Vulnerability Intelligence Center / Exploits☆161Updated this week
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆373Updated 4 months ago
- Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…☆122Updated 10 months ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆135Updated 4 years ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆45Updated 2 years ago
- Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet☆189Updated 7 months ago
- Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.☆251Updated 3 months ago
- Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud☆51Updated 2 years ago
- VMC: a Scalable, Open Source and Free Vulnerability Management Platform☆87Updated 3 weeks ago
- Extensible framework for analyzing publicly available information about vulnerabilities☆109Updated 2 months ago
- Awesome curate list of cyber security penetration testing tools for Cloud Security mainly AWS/Azure/Google☆121Updated 3 years ago
- Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…☆116Updated 6 months ago
- Awesome list for cloud security related projects☆84Updated 2 years ago
- Pwnspoof repository☆258Updated last year
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆224Updated 2 years ago
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆62Updated 8 months ago
- This provides a guided step by step walkthrough for threat modeling with MITRE ATT&CK Framework☆27Updated last week
- Repository resource for threat hunter☆158Updated 6 years ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆246Updated last month
- A Docker container for remote penetration testing.☆134Updated 3 years ago
- Docker toolbox for pentest of web based application.☆148Updated this week
- A Command-line tool which leverages the Tenable.io API to reduce the time it takes to get information that is common during remediation o…☆74Updated 5 months ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆71Updated 9 months ago