OWASP / www-project-devsecops-verification-standardLinks
OWASP Foundation Web Respository
☆45Updated 2 months ago
Alternatives and similar repositories for www-project-devsecops-verification-standard
Users that are interested in www-project-devsecops-verification-standard are comparing it to the libraries listed below
Sorting:
- ☆61Updated 2 months ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆65Updated 3 months ago
- A tool to keep AWS pentests and red teams efficient, organized, and stealthy.☆95Updated last year
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆101Updated last year
- An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects☆33Updated 6 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆143Updated 7 months ago
- ☆189Updated 4 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated 9 months ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆78Updated last year
- Cloud Offensive Breach and Risk Assessment (COBRA) Tool☆94Updated 3 months ago
- GCPGoat : A Damn Vulnerable GCP Infrastructure☆408Updated 10 months ago
- ☆179Updated 4 months ago
- APIsec|SCAN - Free API security testing using Github actions☆101Updated last year
- boostsecurityio/lotp☆132Updated 4 months ago
- ☆112Updated 2 years ago
- ☆41Updated 6 months ago
- Halberd : Multi-Cloud Agentic Attack Tool☆304Updated last month
- A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation☆108Updated last year
- This provides a guided step by step walkthrough for threat modeling with MITRE ATT&CK Framework☆30Updated 6 months ago
- OWASP Foundation Web Respository☆97Updated 7 months ago
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆176Updated this week
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆109Updated 9 months ago
- A full insecure kubernetes application for testing security tools☆89Updated 4 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆209Updated this week
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆66Updated 2 months ago
- 🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment☆160Updated 4 years ago
- This is a RSS feed collection for all the InfoSec Content Creators☆32Updated last year
- IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.☆104Updated last year
- Awesome list for cloud security related projects☆131Updated 2 years ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆134Updated 4 months ago