Alternatives and similar repositories for devsecops-lab:

Users that are interested in devsecops-lab are comparing it to the libraries listed below

• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆120Updated 2 years ago
• layro01 / node-api-goat
  A simple Node.js Express REST app with some OWASP vulnerabilities.
  ☆16Updated 6 months ago
• optiv / rest-api-goat
  ☆75Updated last year
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆62Updated 8 months ago
• ivision-research / vulnerable-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆59Updated 3 years ago
• NeuraLegion / brokencrystals
  A Broken Application - Very Vulnerable!
  ☆142Updated this week
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆107Updated last year
• mgreiler / secure-code-review-checklist
  ☆184Updated last year
• AppSecExplained / ctf-cobra-kai
  ☆11Updated last year
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆129Updated 2 years ago
• security-prince / Resources-for-Application-Security
  Some good resources for getting started with application security
  ☆141Updated 3 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆63Updated last year
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆134Updated last year
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆61Updated 7 months ago
• detectify / ugly-duckling
  Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
  ☆189Updated 3 years ago
• dub-flow / secure-code-review-challenges
  This repo contains the code for my secure code review challenges
  ☆88Updated this week
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 5 months ago
• OWASP / www-project-developer-guide
  OWASP Project Developer Guide - Document and Project Web pages
  ☆107Updated last week
• vengatesh-nagarajan / Cloud-pentest
  Resources to learn cloud environment and pentesting the same, contains AWS, Azure, Google Cloud
  ☆51Updated 2 years ago
• 0xd4y / AWSealion
  A tool to keep AWS pentests and red teams efficient, organized, and stealthy.
  ☆89Updated 11 months ago
• Toreon / threat-model-playbook
  ☆82Updated 3 years ago
• courselabs / devsecops
  ☆18Updated 3 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆174Updated 2 years ago
• jorritfolmer / vulnerable-api
  Enhanced fork with logging, OpenAPI 3.0 and Python 3 for security monitoring workshops
  ☆42Updated last year
• owaspsamm / core
  Core model including reused documentation
  ☆94Updated 5 months ago
• RyanJarv / awesome-cloud-sec
  Awesome list for cloud security related projects
  ☆84Updated 2 years ago
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆78Updated 2 years ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆61Updated 3 years ago
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆156Updated 3 years ago
• appsecco / dvcsharp-api
  Damn Vulnerable C# Application (API)
  ☆72Updated 7 months ago