OWASP / packman
A documentation and tracking project with the goal of making package management systems more secure.
☆50Updated 4 years ago
Alternatives and similar repositories for packman:
Users that are interested in packman are comparing it to the libraries listed below
- Security scanning & static analysis tool☆94Updated 5 months ago
- ☆63Updated 2 years ago
- Pin designs for security related items☆37Updated 10 months ago
- ☆20Updated 6 years ago
- ☆39Updated 4 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 7 months ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆21Updated last year
- ☆35Updated 3 years ago
- DEPRECATED - web security checklist for Firefox Services☆74Updated 4 years ago
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated last year
- ☆32Updated 3 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- App that simplifies building decision trees to model adverse scenarios☆203Updated 8 months ago
- Software Component Verification Standard (SCVS)☆141Updated 11 months ago
- A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC☆33Updated 2 months ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆73Updated 3 years ago
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated last month
- GCP CSPM using Google Sheets☆35Updated 9 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆61Updated 8 months ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- A community collection of security reviews of open source software components.☆93Updated last year
- Threat Modeling Manifesto☆27Updated 8 months ago
- Slides from presentations I give!☆23Updated 3 months ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆119Updated 2 months ago
- A Java library for programmatically calculating OWASP Risk Rating scores☆18Updated last year
- Technical Advisory Council☆118Updated this week
- ☆53Updated last week
- TSLint rules for Angular☆18Updated 6 years ago
- ZAP Management Scripts☆23Updated this week