OWASP / cumulusLinks
Cumulus. Threat modeling the Clouds.
☆27Updated 2 months ago
Alternatives and similar repositories for cumulus
Users that are interested in cumulus are comparing it to the libraries listed below
Sorting:
- Add a layer of active defense to your cloud applications.☆101Updated last week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆177Updated last month
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆214Updated last week
- ☆87Updated 4 years ago
- AI Security Shared Responsibility Model☆87Updated 3 months ago
- One Conference 2024☆111Updated last year
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆45Updated 3 weeks ago
- ☆20Updated 3 years ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆146Updated last year
- 🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.☆75Updated last year
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆290Updated last year
- An online multiplayer version of the threat modeling card games: Elevation of Privilege (EoP), OWASP Cornucopia, OWASP Cumulus, and Eleva…☆81Updated last month
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆59Updated 2 years ago
- Gram is Klarna's own threat model diagramming tool☆330Updated 2 weeks ago
- OWASP Foundation Web Respository☆100Updated 2 weeks ago
- A full insecure kubernetes application for testing security tools☆91Updated 2 months ago
- This is a companion to the Security Engineer Questions☆204Updated 2 years ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆82Updated last year
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆70Updated last month
- boostsecurityio/poutine☆354Updated this week
- Summaries, transcripts, key points, and other useful insights from fwd:cloudsec 2025 talks for those of us who don't have time to watch e…☆86Updated 6 months ago
- Segment's Threat Modeling training for our engineers☆244Updated 4 years ago
- The security workflow engine!☆136Updated last month
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆210Updated this week
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆143Updated last week
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Updated last year
- A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models☆357Updated 2 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆173Updated last month
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆99Updated 2 months ago
- AI featured threat modeling and security review action☆45Updated last year