OWASP / OdTM
OWASP Ontology-driven Threat Modelling framework
☆37Updated last year
Alternatives and similar repositories for OdTM:
Users that are interested in OdTM are comparing it to the libraries listed below
- This repository holds the necessary content to produce the D3FEND ontology distribution.☆78Updated last week
- Development of the NIST vulnerability data ontology (Vulntology).☆39Updated 2 weeks ago
- Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…☆62Updated 2 weeks ago
- Security Control Knowledge Graph☆28Updated last year
- A MAL language that demonstrates the Maven project structure☆23Updated 3 years ago
- Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology☆81Updated 2 weeks ago
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆50Updated last week
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆63Updated 10 months ago
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆35Updated 2 years ago
- OASIS CACAO TC: Official repository for work of the CACAO TC https://github.com/oasis-tcs/cacao☆28Updated last year
- OCA-wide documentation shared by all sub-projects and repositories☆33Updated 6 months ago
- A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data☆26Updated 5 years ago
- ☆19Updated 4 years ago
- Posture Attribute Collection and Evaluation☆23Updated last year
- OWASP Foundation Web Respository☆28Updated 8 months ago
- Kestrel Jupyter Notebook Kernel☆9Updated last year
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆46Updated this week
- ☆25Updated last year
- Structured Threat Intelligence Graph☆91Updated last month
- OASIS-TAC-TC: OWL representation of the TAC TCs work products are maintained here. - https://github.com/oasis-tcs/tac-ontology☆16Updated 3 years ago
- Computer Aided Integration of Requirements and Information Security - Server☆162Updated 8 months ago
- Global Security Database Tools☆42Updated last year
- Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data☆50Updated this week
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆35Updated 5 months ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆43Updated 5 years ago
- Stakeholder-Specific Vulnerability Categorization☆147Updated this week
- OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…☆41Updated last year
- Adversary Emulation Planner☆39Updated 10 months ago
- Firepit - STIX Columnar Storage☆16Updated 11 months ago
- Scripts to import OSCAL example content into the Neo4J graph database☆28Updated 2 years ago