OWASP / cumulusLinks
Cumulus. Threat modeling the Clouds.
☆28Updated 3 months ago
Alternatives and similar repositories for cumulus
Users that are interested in cumulus are comparing it to the libraries listed below
Sorting:
- Add a layer of active defense to your cloud applications.☆103Updated last week
- An online multiplayer version of the threat modeling card games: Elevation of Privilege (EoP), OWASP Cornucopia, OWASP Cumulus, and Eleva…☆83Updated this week
- ☆88Updated 4 years ago
- ☆20Updated 4 years ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆215Updated this week
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆46Updated last week
- Gram is Klarna's own threat model diagramming tool☆331Updated 2 weeks ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Updated 2 years ago
- OWASP Foundation Web Respository☆101Updated last month
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated last year
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆83Updated last year
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆70Updated 2 months ago
- One Conference 2024☆111Updated last year
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆179Updated last month
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆59Updated 2 years ago
- AI Security Shared Responsibility Model☆88Updated 4 months ago
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆263Updated 7 months ago
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆102Updated 3 months ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆144Updated last month
- MCP Server Security Standard (MSSS): an open, testable security control standard for certifying MCP servers, with levels, evidence requir…☆52Updated last week
- A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models☆360Updated this week
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆215Updated last week
- AuditKit - Multi-Cloud Compliance Scanner & Evidence Collection☆247Updated this week
- 🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.☆76Updated last year
- A full insecure kubernetes application for testing security tools☆90Updated 3 months ago
- The security workflow engine!☆136Updated 2 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆101Updated 2 years ago
- This is a companion to the Security Engineer Questions☆205Updated 2 years ago
- Documentation on the Cyber Defense Matrix☆24Updated 2 years ago
- Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…☆95Updated 2 months ago