Alternatives and similar repositories for secure-coding-practices-quick-reference-guide:

Users that are interested in secure-coding-practices-quick-reference-guide are comparing it to the libraries listed below

• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆61Updated 7 months ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆45Updated 2 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆63Updated last year
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆43Updated 2 years ago
• OpenSecuritySummit / oss-website
  The Open Security Summit is focused on the collaboration between, Developers and Application Security
  ☆45Updated 2 months ago
• OWASP / threat-modeling-playbook
  ☆32Updated 2 years ago
• OWASP / www-project-cloud-native-application-security-top-10
  OWASP Foundation Web Respository
  ☆34Updated 5 months ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆14Updated last year
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆62Updated 8 months ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 5 months ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆120Updated 2 years ago
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆107Updated last year
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 4 years ago
• OWASP / www-project-devsecops-verification-standard
  OWASP Foundation Web Respository
  ☆43Updated 5 months ago
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆135Updated 4 years ago
• OWASP / threat-dragon-desktop
  Desktop variant of OWASP Threat Dragon
  ☆77Updated 3 years ago
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆129Updated 2 years ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆134Updated last year
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆156Updated 3 years ago
• ivision-research / vulnerable-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆59Updated 3 years ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 9 months ago
• akto-api-security / tests-library
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆35Updated this week
• Toreon / threat-model-playbook
  ☆82Updated 3 years ago
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated last year
• piercing-index / cloud-vulnerabilities
  ☆38Updated 10 months ago
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆78Updated 2 years ago
• OWASP / www-project-integration-standards
  OWASP Foundation Web Respository
  ☆27Updated 6 months ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆36Updated 3 years ago
• OWASP / raider
  OWASP Raider: a novel framework for manipulating the HTTP processes of persistent sessions
  ☆104Updated last year
• security-prince / Resources-for-Application-Security
  Some good resources for getting started with application security
  ☆141Updated 3 years ago