OWASP / packman

Related projects ⓘ

Alternatives and complementary repositories for packman

• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 3 months ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• thought-machine / dracon
  Security scanning & static analysis tool
  ☆93Updated last month
• wurstbrot / security-pins
  Pin designs for security related items
  ☆37Updated 6 months ago
• Open-Source-Security-Coalition / Open-Source-Security-Coalition
  ☆39Updated 4 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆135Updated 7 months ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆36Updated 3 years ago
• mozilla-services / websec-check
  web security checklist for Firefox Services
  ☆74Updated 3 years ago
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆180Updated last week
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆57Updated 5 years ago
• secmerc / materialize-threats
  ☆61Updated last year
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆169Updated this week
• OWASP / threat-modeling-playbook
  ☆30Updated 2 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆103Updated 5 years ago
• ossf / tac
  Technical Advisory Council
  ☆109Updated last week
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated 8 months ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆71Updated 3 years ago
• jfrog / jfrog-npm-tools
  ☆54Updated last year
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated 10 months ago
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆68Updated 2 months ago
• openvex / spec
  OpenVEX Specification
  ☆132Updated 4 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆120Updated this week
• seek-oss / listo
  Listo. Use questionnaires and checklists to make it easy to do the right thing, regarding the software you build.
  ☆28Updated last year
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆48Updated this week
• jtmelton / camas
  A zero-dependency tool for finding secrets in directories
  ☆10Updated 3 years ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆69Updated last year
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆59Updated this week
• OWASP / cwe-sdk-javascript
  A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
  ☆33Updated last month
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 8 months ago