OWASP / www-project-risk-assessment-framework
OWASP Foundation Web Respository
☆17Updated last year
Related projects: ⓘ
- The Secure Coding Framework☆19Updated 4 years ago
- Threat Modeling Manifesto☆24Updated 2 months ago
- OWASP Foundation Web Respository☆26Updated last year
- ☆28Updated 2 years ago
- The OWASP Vulnerable Web Applications Directory (VWAD) Project - OWASP Web Site☆18Updated last week
- InfoSec OpenAI Examples☆19Updated 9 months ago
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆44Updated this week
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 3 years ago
- IriusRisk Community☆62Updated last year
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)☆30Updated last year
- OWASP Threat Dragon core files☆11Updated last month
- Maturity Model Collaborative project☆13Updated last year
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆69Updated 3 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated last year
- A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data☆25Updated 5 years ago
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated 4 months ago
- ☆60Updated last year
- OWASP Threat Dragon core files☆28Updated 3 years ago
- A community collection of security reviews of open source software components.☆92Updated 6 months ago
- A curated threat modeling library collection☆21Updated 9 months ago
- ☆18Updated 2 years ago
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 3 years ago
- OWASP Foundation Web Respository☆26Updated last month
- AppSecPipeline Specification for DevOps automation.☆38Updated last year
- Scripts and misc. stuff related to the PortSwigger Web Academy☆17Updated 2 years ago
- Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Co…☆20Updated 4 months ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆60Updated last year
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆28Updated 2 years ago
- ☆18Updated 4 years ago
- ☆13Updated last year