LuizBoina / dragon-gpt
Dragon-GPT uses Chat-GPT, or local LLM, to execute automatic and AI-powered threat modeling analysis on a given OWASP Threat Dragon diagram.
☆33Updated 2 weeks ago
Alternatives and similar repositories for dragon-gpt:
Users that are interested in dragon-gpt are comparing it to the libraries listed below
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆61Updated 8 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆45Updated 2 years ago
- ☆32Updated 3 years ago
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆49Updated this week
- Maturity Model Collaborative project☆14Updated 2 years ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- A fun POC that is built to understand AI security agents.☆25Updated 2 months ago
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆49Updated this week
- OWASP Threat Dragon with Gitlab Integration☆25Updated 7 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 6 months ago
- InfoSec OpenAI Examples☆19Updated last year
- A project to visualize the software supply chain☆39Updated last year
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated 2 months ago
- Threat Modeling Manifesto☆27Updated 7 months ago
- AI featured threat modeling and security review action☆43Updated 3 months ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆73Updated 3 years ago
- Manager of third-party sources of Semgrep rules 🗂☆79Updated 7 months ago
- LLM Testing Findings Templates☆68Updated last year
- NextJS-based single-page application for completing and reviewing SAMM assessments☆70Updated last year
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆71Updated 10 months ago
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆37Updated 3 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- ☆98Updated this week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆171Updated 3 months ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆48Updated 8 years ago
- 📚A curated list of product security resources.☆19Updated 2 years ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆38Updated 3 months ago
- AI featured threat modeling and security review project☆16Updated 3 months ago