OWASP / cumulus

Related projects ⓘ

Alternatives and complementary repositories for cumulus

• SAP / cloud-active-defense
  Add a layer of active defense to your cloud applications.
  ☆81Updated this week
• TNG / elevation-of-privilege
  An online multiplayer version of the threat modeling card games: Elevation of Privilege (EoP), OWASP Cornucopia, OWASP Cumulus, and Eleva…
  ☆61Updated 3 weeks ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆79Updated 2 months ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆169Updated 8 months ago
• MaibornWolff / dd-import
  A utility to (re-)import findings and language data into DefectDojo
  ☆42Updated last month
• AppSecure-nrw / security-belts
  ☆102Updated 4 months ago
• IBM / sbom-utility
  This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility
  ☆61Updated last year
• orcasecurity-research / AIGoat
  AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.
  ☆77Updated 2 months ago
• OWASP / OpenCRE
  ☆80Updated this week
• javixeneize / neo4cyclone
  ☆24Updated last year
• Toreon / threat-model-playbook
  ☆79Updated 3 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 2 months ago
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆54Updated this week
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆54Updated last year
• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆67Updated 6 months ago
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆37Updated last year
• smithy-security / smithy
  The security workflow engine!
  ☆73Updated this week
• OpenSecuritySummit / project-ASVS-User-Stories
  ☆18Updated 2 years ago
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆79Updated this week
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆151Updated 2 months ago
• dark-warlord14 / CVENotifier
  Customized CVE FEED Notifier
  ☆107Updated 4 months ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆53Updated 2 months ago
• wurstbrot / security-pins
  Pin designs for security related items
  ☆37Updated 6 months ago
• SAP / credential-digger
  A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models
  ☆318Updated last week
• google / localtoast
  ☆107Updated last month
• xvnpw / ai-threat-modeling-action
  AI featured threat modeling and security review action
  ☆40Updated 5 months ago
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆76Updated 5 months ago
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆84Updated 3 months ago
• WithSecureOpenSource / elevation-of-privacy
  Privacy Cards for Software Developers
  ☆51Updated 5 years ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆229Updated last week