Alternatives and similar repositories for www-project-devsecops-verification-standard

Users that are interested in www-project-devsecops-verification-standard are comparing it to the libraries listed below

• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆68Updated 6 months ago
• mihir-shah99 / vxdf
  ☆63Updated 5 months ago
• gabrielsoltz / metahub
  MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.
  ☆177Updated 3 weeks ago
• unknownhad / CloudIntel
  This repo contains IOC, malware and malware analysis associated with Public cloud
  ☆249Updated last year
• ReversecLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆142Updated 10 months ago
• PaloAltoNetworks / cobra-tool
  Cloud Offensive Breach and Risk Assessment (COBRA) Tool
  ☆98Updated 6 months ago
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆74Updated last month
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆193Updated 7 months ago
• apisec-university / free-API-security-test-action
  APIsec|SCAN - Free API security testing using Github actions
  ☆102Updated last year
• xvnpw / sec-docs
  An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects
  ☆34Updated 8 months ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆100Updated 2 weeks ago
• bvoris / mitreattackthreatmodeling
  This provides a guided step by step walkthrough for threat modeling with MITRE ATT&CK Framework
  ☆29Updated 9 months ago
• NextSecurity / Awesome-Cloud-Security
  Awesome curate list of cyber security penetration testing tools for Cloud Security mainly AWS/Azure/Google
  ☆127Updated 4 years ago
• Cybr-Inc / fwdcloudsec-2025-summaries
  Summaries, transcripts, key points, and other useful insights from fwd:cloudsec 2025 talks for those of us who don't have time to watch e…
  ☆82Updated 4 months ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Updated last year
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆67Updated 4 months ago
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆89Updated 3 weeks ago
• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆96Updated last year
• Cybr-Inc / CloudSec
  Public repository of all things cloud security.
  ☆45Updated last year
• ReversecLabs / IceKube
  ☆182Updated 6 months ago
• optiv / rest-api-goat
  ☆85Updated 2 years ago
• padok-team / cognito-scanner
  A simple script which implements different Cognito attacks such as Account Oracle or Priviledge Escalation
  ☆107Updated last year
• piercing-index / cloud-vulnerabilities
  ☆43Updated last month
• snyk-labs / github-actions-scanner
  Scans your Github Actions for security issues
  ☆86Updated last week
• nccgroup / ccs
  ☆114Updated 2 years ago
• Hacking-the-Cloud / htc-ctfs
  Holds the public Hacking the Cloud CTFs.
  ☆59Updated last year
• vectra-ai-research / Halberd
  Halberd : Multi-Cloud Agentic Attack Tool
  ☆321Updated last week
• iknowjason / edge
  Whois for the Cloud: Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.
  ☆181Updated last month
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆162Updated 4 years ago
• ine-labs / GCPGoat
  GCPGoat : A Damn Vulnerable GCP Infrastructure
  ☆417Updated last year