JavierOlmedo / OWASP-Calculator
🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
☆156Updated 3 years ago
Alternatives and similar repositories for OWASP-Calculator:
Users that are interested in OWASP-Calculator are comparing it to the libraries listed below
- ☆123Updated last year
- ☆82Updated 3 years ago
- SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.☆221Updated 2 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- A small tool to help developers understand a huge set of security requirements from appsec teams☆45Updated 2 years ago
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!☆123Updated 2 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 7 months ago
- VMC: a Scalable, Open Source and Free Vulnerability Management Platform☆89Updated 2 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆61Updated 8 months ago
- ☆110Updated last year
- ☆76Updated last year
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆265Updated 2 years ago
- Some good resources for getting started with application security☆142Updated 3 years ago
- Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…☆124Updated 11 months ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆64Updated last year
- A Command-line tool which leverages the Tenable.io API to reduce the time it takes to get information that is common during remediation o…☆74Updated 6 months ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆381Updated 5 months ago
- Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud☆52Updated 3 years ago
- Pentesting lab with a Kali Linux instance accessible via ssh & wireguard VPN and with vulnerable instances in a private subnet☆188Updated 8 months ago
- Docker toolbox for pentest of web based application.☆147Updated this week
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆72Updated 10 months ago
- Awesome list for cloud security related projects☆116Updated 2 years ago
- 🗒️ A [work-in-progress] collection for interview questions for Information Security roles☆135Updated 2 years ago
- Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…☆194Updated 11 months ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)☆43Updated 2 years ago
- Damn Vulnerable Java (EE) Application☆135Updated last year
- Parse .nessus file(s) and shows output in interactive UI☆150Updated 11 months ago
- This is a companion to the Security Engineer Questions☆203Updated last year
- OWASP Foundation Web Respository☆29Updated 2 years ago