SAMM stands for Software Assurance Maturity Model.
☆398May 17, 2022Updated 4 years ago
Alternatives and similar repositories for samm
Users that are interested in samm are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆195Aug 27, 2018Updated 7 years ago
- Application Security Verification Standard☆3,430Mar 17, 2026Updated 2 months ago
- Security Knowledge Framework (SKF) Python Flask / Angular project☆830Mar 12, 2024Updated 2 years ago
- This project is about creating and publishing threat model examples.☆432Nov 10, 2021Updated 4 years ago
- An open source, online threat modelling tool from OWASP☆484Jul 18, 2025Updated 10 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Application Security Automation☆526Sep 5, 2023Updated 2 years ago
- git for the owasp books project; setting up processes capabilities for publishing OWASP books☆19Aug 17, 2018Updated 7 years ago
- Threat Modeling Manifesto☆31Jul 18, 2024Updated last year
- An application to assist in the organization and prioritization of software security activities.☆139Jun 10, 2021Updated 4 years ago
- ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…☆340Dec 16, 2022Updated 3 years ago
- A Continuous Threat Modeling methodology☆327Jun 24, 2022Updated 3 years ago
- OWASP Foundation Web Respository☆56Oct 4, 2025Updated 7 months ago
- ☆15Jul 9, 2020Updated 5 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆181Dec 7, 2018Updated 7 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Software Component Verification Standard (SCVS)☆157Apr 1, 2025Updated last year
- OWASP IoT Security Verification Standard (ISVS)☆150Oct 6, 2025Updated 7 months ago
- OWASP ASVS Assessment Tool☆28Nov 6, 2018Updated 7 years ago
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,699Updated this week
- A Pythonic framework for threat modeling☆1,125May 2, 2026Updated 2 weeks ago
- Content for OWASP Summit 2017 site☆129Nov 12, 2020Updated 5 years ago
- The Secure Coding Framework☆272Aug 18, 2020Updated 5 years ago
- Security Champions Playbook v 2.1☆393Sep 25, 2023Updated 2 years ago
- Pin designs for security related items☆37Feb 16, 2026Updated 3 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A Java library for parsing and programmatically using threat models☆82Feb 15, 2023Updated 3 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆281Feb 17, 2026Updated 3 months ago
- threatspec - continuous threat modeling, through code☆384Dec 30, 2020Updated 5 years ago
- This repo is no longer in use. Please refer to https://github.com/OWASP/www-project-vulnerable-web-applications-directory☆883Apr 13, 2026Updated last month
- Swag for the OWASP projects and chapters☆44Updated this week
- code reviews to practice☆18Jul 22, 2021Updated 4 years ago
- This directory focuses exclusively on Threat Modeling Tools—software, code, libraries, or services that automate, guide, or support the d…☆22May 2, 2026Updated 3 weeks ago
- OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web…☆797Updated this week
- A simple web app that helps developers understand the ASVS requirements. Now supporting ASVS 5.0☆164Nov 25, 2025Updated 5 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- OWASP SonarQube Project☆112Aug 22, 2019Updated 6 years ago
- This repository will teach you have to do my talk "Pushing Left, Like a Boss".☆71Jan 1, 2022Updated 4 years ago
- ☆575May 14, 2026Updated last week
- The OWASP Developer Guide☆2,156May 1, 2026Updated 3 weeks ago
- The Elevation of Privilege Threat Modeling Game☆355Jun 20, 2024Updated last year
- Maturity Model Collaborative project☆15Feb 27, 2023Updated 3 years ago
- Microsoft Threat Modeling Template files☆204Nov 28, 2022Updated 3 years ago