OWASP / www-project-risk-assessment-framework

Related projects: ⓘ

• Risk-Assessment-Framework / RiskAssessmentFramework
  The Secure Coding Framework
  ☆19Updated 4 years ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆24Updated 2 months ago
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆26Updated last year
• OWASP / threat-modeling-playbook
  ☆28Updated 2 years ago
• OWASP / www-project-vulnerable-web-applications-directory
  The OWASP Vulnerable Web Applications Directory (VWAD) Project - OWASP Web Site
  ☆18Updated last week
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated 9 months ago
• OpenSecuritySummit / oss-website
  The Open Security Summit is focused on the collaboration between, Developers and Application Security
  ☆44Updated this week
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 3 years ago
• iriusrisk / Community
  IriusRisk Community
  ☆62Updated last year
• kempy007 / VulManAgg
  Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)
  ☆30Updated last year
• mike-goodwin / owasp-threat-dragon-core
  OWASP Threat Dragon core files
  ☆11Updated last month
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆13Updated last year
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆69Updated 3 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated last year
• COVAIL / MITRE_NIST
  A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data
  ☆25Updated 5 years ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 4 months ago
• secmerc / materialize-threats
  ☆60Updated last year
• OWASP / threat-dragon-core
  OWASP Threat Dragon core files
  ☆28Updated 3 years ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 6 months ago
• w8mej / Threat_Modeling_Bank
  A curated threat modeling library collection
  ☆21Updated 9 months ago
• OpenSecuritySummit / project-ASVS-User-Stories
  ☆18Updated 2 years ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 3 years ago
• OWASP / www-project-integration-standards
  OWASP Foundation Web Respository
  ☆26Updated last month
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆38Updated last year
• pageinsec / portswigger_academy
  Scripts and misc. stuff related to the PortSwigger Web Academy
  ☆17Updated 2 years ago
• pumasecurity / puma-prey
  Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Co…
  ☆20Updated 4 months ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆60Updated last year
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆28Updated 2 years ago
• spyd3r / owasp-asvs-github
  ☆18Updated 4 years ago
• P3tra-WP / Jupyter-Threat
  ☆13Updated last year