OWASP / cumulusLinks
Cumulus. Threat modeling the Clouds.
☆22Updated 2 months ago
Alternatives and similar repositories for cumulus
Users that are interested in cumulus are comparing it to the libraries listed below
Sorting:
- Add a layer of active defense to your cloud applications.☆95Updated 3 weeks ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆175Updated 9 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆209Updated this week
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆78Updated last year
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆41Updated last month
- Gram is Klarna's own threat model diagramming tool☆324Updated last month
- An online multiplayer version of the threat modeling card games: Elevation of Privilege (EoP), OWASP Cornucopia, OWASP Cumulus, and Eleva…☆76Updated last week
- ☆121Updated this week
- OWASP Foundation Web Respository☆97Updated 7 months ago
- A full insecure kubernetes application for testing security tools☆89Updated 4 months ago
- ☆110Updated last year
- ☆88Updated 4 years ago
- boostsecurityio/poutine☆309Updated last week
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆90Updated 3 months ago
- A tool for preventing the installation of malicious npm and PyPI packages☆158Updated this week
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆287Updated 11 months ago
- ☆25Updated last year
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated last year
- The security workflow engine!☆119Updated this week
- One Conference 2024☆111Updated 11 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆136Updated last year
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- Stakeholder-Specific Vulnerability Categorization☆162Updated this week
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated last week
- A utility to (re-)import findings and language data into DefectDojo☆43Updated 11 months ago
- An extensive list of resources related to threat modelling. Gotta catch ’em all!☆39Updated 2 weeks ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated last year
- SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…☆157Updated this week
- An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects☆33Updated 6 months ago
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆174Updated 4 months ago