Alternatives and similar repositories for devsecops-docs

Users that are interested in devsecops-docs are comparing it to the libraries listed below

• ComplianceAsCode / auditree-harvest
  The Auditree data gathering and reporting tool.
  ☆15Updated 10 months ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• mitiga / log4shell-cloud-scanner
  we are providing DevOps and security teams script to identify cloud workloads that may be vulnerable to the Log4j vulnerability(CVE-2021-…
  ☆13Updated 3 years ago
• disclose / dnssecuritytxt
  A standard allowing organizations to nominate security contact points and policies via DNS TXT records.
  ☆31Updated last month
• cisagov / nessus-packer
  Create machine images containing the Nessus vulnerability scanner
  ☆13Updated last week
• w8mej / PoorOperationalSecurityPractices
  Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.
  ☆13Updated last year
• cisagov / sensitive-data-scanner
  A tool for detecting sensitive data in code repositories
  ☆16Updated last month
• Netflix-Skunkworks / stethoscope-examples
  Example Express application for collecting data from the Stethoscope app
  ☆14Updated 7 years ago
• gjyoung1974 / policy-pipeline
  Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…
  ☆11Updated 4 years ago
• 18F / identity-cookbooks
  Open source cookbooks used by the login.gov team
  ☆10Updated 6 months ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated last year
• cisagov / pe-reports
  Automated process to build and distribute Posture & Exposure Reports' bi-weekly to customers.
  ☆17Updated last year
• yuvarajmms / cloud-security
  A curated list of Cloud Security techniques and tools
  ☆29Updated 2 years ago
• redteam-project / cyber-range-scenarios
  Training scenarios for cyber ranges
  ☆11Updated 5 years ago
• nstapelbroek / gatekeeper
  A poor man's access control for cloud- security groups and firewalls. Enable deployments by temporary allowing addresses!
  ☆13Updated 2 months ago
• CISecurity / CCPA-Docs
  ☆10Updated last year
• mitre / heimdall-legacy
  A Security Results Viewer for the web with storage, teams and history
  ☆35Updated 2 years ago
• teamdfir / sift-packer-legacy
  Packer.io Scripts to build the SIFT VM(s)
  ☆11Updated 4 years ago
• CiscoDevNet / MUD-Manager
  Manufacturer Usage Description (MUD) is a technique whereby constrained end devices (e.g., IoT devices) can signal to the network what so…
  ☆23Updated 4 years ago
• Acheron-VAF / Vulnerability-Assessment-Framework
  ☆11Updated 8 years ago
• opendxl / opendxl-console
  OpenDXL Console is a high-level web-based console for interacting with a DXL fabric
  ☆11Updated 4 years ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆22Updated 11 months ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 7 years ago
• mitre / aws-rds-infrastructure-cis-baseline
  InSpec Profile to validate the secure configuration of aws-rds-infrastructure-cis-baseline, against CIS's Amazon Web Services Three-tier …
  ☆14Updated 3 years ago
• CISOfy / handbook
  CISOfy Handbook
  ☆32Updated 8 years ago
• EdOverflow / hunter
  Guidelines for writing secure code for Python developers.
  ☆20Updated 8 years ago
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆19Updated 2 months ago
• Secure-Compliance-Solutions-LLC / gvm-logstash
  Takes in scan reports from the GVM PostgreSQL Database and dump into Elasticsearch
  ☆15Updated last year
• gophish / healthcheck
  A service to test mail servers for best practices.
  ☆37Updated 7 years ago
• huntresslabs / free-tools
  ☆11Updated 4 years ago