LuizBoina / dragon-gpt
Dragon-GPT uses Chat-GPT, or local LLM, to execute automatic and AI-powered threat modeling analysis on a given OWASP Threat Dragon diagram.
☆31Updated last year
Related projects ⓘ
Alternatives and complementary repositories for dragon-gpt
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆55Updated 4 months ago
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆48Updated this week
- OWASP Threat Dragon with Gitlab Integration☆24Updated 7 years ago
- OWASP Foundation Web Respository☆19Updated last month
- ☆80Updated this week
- A small tool to help developers understand a huge set of security requirements from appsec teams☆45Updated 2 years ago
- OWASP Foundation Web Respository☆27Updated last year
- AI featured threat modeling and security review action☆40Updated this week
- Maturity Model Collaborative project☆13Updated last year
- A project to visualize the software supply chain☆36Updated last year
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆33Updated last month
- InfoSec OpenAI Examples☆19Updated 11 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆61Updated this week
- Threat Modeling Manifesto☆27Updated 4 months ago
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 2 months ago
- LLM Testing Findings Templates☆65Updated 9 months ago
- OWASP Foundation Web Respository☆27Updated 3 months ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- A community collection of security reviews of open source software components.☆92Updated 8 months ago
- DefectDojo Community Content☆17Updated last month
- ☆37Updated 7 months ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆67Updated 6 months ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆62Updated last year
- Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data☆46Updated 4 months ago
- Monorepo of Labs for the Security Knowledge Framework (SKF)☆32Updated 3 months ago
- ☆30Updated last year
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆27Updated last year
- An LLM and OCR based Indicator of Compromise Extraction Tool☆31Updated 7 months ago
- Python API library for DefectDojo☆40Updated last year
- Kenna Security API and Scripting Toolkit☆34Updated 2 weeks ago