Alternatives and similar repositories for Maturity-Models

Users that are interested in Maturity-Models are comparing it to the libraries listed below

• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆395Updated 3 years ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆182Updated 7 years ago
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆119Updated 7 years ago
• aparsons / bag-of-holding
  An application to assist in the organization and prioritization of software security activities.
  ☆139Updated 4 years ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆279Updated this week
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 6 years ago
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆327Updated 3 years ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆371Updated 4 years ago
• geoffrey-hill-tutamantic / rapid-threat-model-prototyping-docs
  This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.
  ☆165Updated 2 years ago
• mike-goodwin / owasp-threat-dragon
  An open source, online threat modelling tool from OWASP
  ☆483Updated 4 months ago
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements. Now supporting ASVS 5.0
  ☆164Updated last week
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆48Updated 9 years ago
• OWASP / threat-model-cookbook
  This project is about creating and publishing threat model examples.
  ☆427Updated 4 years ago
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆129Updated 5 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 3 years ago
• OWASP / glue
  Application Security Automation
  ☆527Updated 2 years ago
• secmerc / materialize-threats
  ☆69Updated 4 months ago
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆271Updated 5 years ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆124Updated 2 years ago
• stevespringett / threatmodel-sdk
  A Java library for parsing and programmatically using threat models
  ☆82Updated 2 years ago
• iriusrisk / Community
  IriusRisk Community
  ☆68Updated 2 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆150Updated 8 months ago
• microsoft / threat-modeling-templates
  Microsoft Threat Modeling Template files
  ☆199Updated 3 years ago
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆111Updated last year
• DefectDojo / sample-scan-files
  Sample scan files for testing DefectDojo imports
  ☆84Updated 3 months ago
• c0rdis / security-champions-playbook
  Security Champions Playbook v 2.1
  ☆384Updated 2 years ago
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆341Updated 2 years ago
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆245Updated 4 years ago
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆43Updated 2 years ago
• shenril / owasp-asvs-checklist
  OWASP ASVS checklist for audits
  ☆208Updated last year