SAMM stands for Software Assurance Maturity Model.
☆398May 17, 2022Updated 4 years ago
Alternatives and similar repositories for samm
Users that are interested in samm are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆195Aug 27, 2018Updated 7 years ago
- Application Security Verification Standard☆3,473Mar 17, 2026Updated 3 months ago
- Security Knowledge Framework (SKF) Python Flask / Angular project☆830Mar 12, 2024Updated 2 years ago
- This project is about creating and publishing threat model examples.☆429Nov 10, 2021Updated 4 years ago
- An open source, online threat modelling tool from OWASP☆482Jul 18, 2025Updated 11 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Application Security Automation☆526Sep 5, 2023Updated 2 years ago
- git for the owasp books project; setting up processes capabilities for publishing OWASP books☆19Aug 17, 2018Updated 7 years ago
- Threat Modeling Manifesto☆31May 28, 2026Updated last month
- An application to assist in the organization and prioritization of software security activities.☆139Jun 10, 2021Updated 5 years ago
- Core model including reused documentation☆107Apr 22, 2026Updated 2 months ago
- ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…☆340Dec 16, 2022Updated 3 years ago
- A Continuous Threat Modeling methodology☆329Jun 24, 2022Updated 4 years ago
- OWASP Foundation Web Respository☆58Oct 4, 2025Updated 8 months ago
- ☆15Jul 9, 2020Updated 5 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- OWASP Cloud Security - Enabling conversations through threat and control stories☆182Dec 7, 2018Updated 7 years ago
- Software Component Verification Standard (SCVS)☆160Apr 1, 2025Updated last year
- OWASP IoT Security Verification Standard (ISVS)☆152Jun 2, 2026Updated 3 weeks ago
- OWASP ASVS Assessment Tool☆28Nov 6, 2018Updated 7 years ago
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,789Updated this week
- A Pythonic framework for threat modeling☆1,135May 22, 2026Updated last month
- Content for OWASP Summit 2017 site☆129Nov 12, 2020Updated 5 years ago
- The Secure Coding Framework☆272Aug 18, 2020Updated 5 years ago
- Security Champions Playbook v 2.1☆394Sep 25, 2023Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Pin designs for security related items☆37Feb 16, 2026Updated 4 months ago
- A Java library for parsing and programmatically using threat models☆83Feb 15, 2023Updated 3 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆282Feb 17, 2026Updated 4 months ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆883Jun 22, 2026Updated last week
- threatspec - continuous threat modeling, through code☆388Dec 30, 2020Updated 5 years ago
- Swag for the OWASP projects and chapters☆45May 22, 2026Updated last month
- code reviews to practice☆18Jul 22, 2021Updated 4 years ago
- This directory focuses exclusively on Threat Modeling Tools—software, code, libraries, or services that automate, guide, or support the d…☆24May 2, 2026Updated last month
- OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web…☆810Jun 22, 2026Updated last week
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A simple web app that helps developers understand the ASVS requirements. Now supporting ASVS 5.0☆167Jun 3, 2026Updated 3 weeks ago
- OWASP SonarQube Project☆112Aug 22, 2019Updated 6 years ago
- Toolbox spreadsheet for assessing maturity and definition of roadmap☆16May 28, 2026Updated last month
- This repository will teach you have to do my talk "Pushing Left, Like a Boss".☆71Jan 1, 2022Updated 4 years ago
- ☆578Jun 22, 2026Updated last week
- The OWASP Developer Guide☆2,162Jun 4, 2026Updated 3 weeks ago
- The Elevation of Privilege Threat Modeling Game☆358Jun 20, 2024Updated 2 years ago