Alternatives and similar repositories for developer-security-training

Users that are interested in developer-security-training are comparing it to the libraries listed below

• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆100Updated this week
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆56Updated last month
• edu-secmachine / javulna
  A deliberately vulnerable java app for educational purposes
  ☆19Updated last year
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆74Updated last month
• Toreon / threat-model-playbook
  ☆88Updated 4 years ago
• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆130Updated last year
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆67Updated 5 months ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆47Updated 3 years ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆56Updated this week
• snyk-labs / awesome-log4shell
  An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒
  ☆233Updated 3 years ago
• mihir-shah99 / vxdf
  ☆63Updated 5 months ago
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆163Updated 4 years ago
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆111Updated last year
• OWASP / www-project-devsecops-verification-standard
  OWASP Foundation Web Respository
  ☆47Updated 3 weeks ago
• apisec-university / free-API-security-test-action
  APIsec|SCAN - Free API security testing using Github actions
  ☆102Updated last year
• juice-shop / multi-juicer
  Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
  ☆299Updated last week
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆107Updated 2 years ago
• MaibornWolff / dd-import
  A utility to (re-)import findings and language data into DefectDojo
  ☆43Updated last year
• mitre / heimdall2
  Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.
  ☆240Updated this week
• rmkanda / tools
  Curated list of security tools
  ☆68Updated last year
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors
  ☆49Updated last week
• DefectDojo / sample-scan-files
  Sample scan files for testing DefectDojo imports
  ☆84Updated 3 months ago
• controlplaneio / threat-modelling-labs
  Labs for Threat Modelling training delivered by ControlPlane
  ☆34Updated last year
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆124Updated 2 years ago
• jeremylong / open-vulnerability-cli
  A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…
  ☆153Updated this week
• magnologan / gha-devsecops
  DevSecOps Pipeline using SAST + DAST and SCA tools
  ☆71Updated last month
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆177Updated last year
• siigil / entra-id-terraform
  Examples of various Entra ID scenarios in Terraform
  ☆17Updated last year
• abnamro / repository-scanner
  Tool to detect secrets in source code management systems.
  ☆163Updated 5 months ago
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆84Updated last week