Alternatives and similar repositories for www-project-appsec-pipeline:

Users that are interested in www-project-appsec-pipeline are comparing it to the libraries listed below

• Risk-Assessment-Framework / RiskAssessmentFramework
  The Secure Coding Framework
  ☆21Updated 4 years ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 10 months ago
• OWASP / www-project-integration-standards
  OWASP Foundation Web Respository
  ☆28Updated 7 months ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated this week
• GoogleCloudPlatform / assured-workloads-terraform
  ☆15Updated 7 months ago
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆50Updated this week
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated 5 months ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14Updated last year
• P3tra-WP / Jupyter-Threat
  ☆14Updated 2 years ago
• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 3 years ago
• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆29Updated 7 months ago
• piercing-index / cloud-vulnerabilities
  ☆41Updated last month
• Mixeway / MixewayBackend
  Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayBackend pro…
  ☆15Updated 6 months ago
• Kloudle / attacking-and-auditing-docker-containers-and-kubernetes-clusters-training
  ☆12Updated 3 years ago
• cisagov / pe-reports
  Automated process to build and distribute Posture & Exposure Reports' bi-weekly to customers.
  ☆17Updated last year
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆40Updated this week
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated this week
• OWASP / threat-modeling-playbook
  ☆33Updated 3 years ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆27Updated 8 months ago
• lightspin-tech / red-bucket-gcp
  ☆10Updated 2 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆61Updated 9 months ago
• Vulnetix / vulnetix
  Automate vulnerability triage which prioritizes remediation over discovery
  ☆16Updated this week
• awsdocs / aws-security-hub-user-guide
  The open source version of the AWS Security Hub documentation. To provide feedback or request changes, you can submit a pull request that…
  ☆35Updated last year
• mal-lang / exampleLang
  A MAL language that demonstrates the Maven project structure
  ☆23Updated 3 years ago
• Permiso-io-tools / bucket-shield
  ☆12Updated 4 months ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 9 months ago
• cisagov / nessus-packer
  Create machine images containing the Nessus vulnerability scanner
  ☆12Updated this week
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆14Updated 2 years ago
• avishayil / cdk-goat
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆46Updated last year