Probely / security_checklist

Related projects ⓘ

Alternatives and complementary repositories for security_checklist

• magoo / ato-checklist
  A checklist of practices for organizations dealing with account takeover (ATO)
  ☆263Updated last month
• OWASP / www-project-security-knowledge-framework
  OWASP Foundation Web Respository
  ☆64Updated last year
• OWASP / www-project-secure-headers
  The OWASP Secure Headers Project
  ☆135Updated this week
• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆123Updated 2 years ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆121Updated last year
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆271Updated last year
• security-prince / Resources-for-Application-Security
  Some good resources for getting started with application security
  ☆136Updated 3 years ago
• JavierOlmedo / OWASP-Calculator
  🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
  ☆152Updated 3 years ago
• secdec / attack-surface-detector-cli
  ☆75Updated 2 years ago
• OWASP / www-project-samm
  OWASP Foundation Web Respository
  ☆40Updated last year
• OWASP / www-project-proactive-controls
  OWASP Foundation Web Respository
  ☆129Updated last week
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆130Updated 10 months ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆169Updated 2 years ago
• koenbuyens / securityheaders
  Check any website (or set of websites) for insecure security headers.
  ☆245Updated last year
• devanshbatham / CertEagle
  Weaponizing Live CT logs for automated monitoring of assets
  ☆133Updated 3 years ago
• mgreiler / secure-code-review-checklist
  ☆181Updated last year
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆332Updated 4 years ago
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆120Updated 7 months ago
• Santandersecurityresearch / asvs
  A simple web app that helps developers understand the ASVS requirements.
  ☆154Updated 8 months ago
• softrams / bulwark
  An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
  ☆180Updated this week
• oshp / headers
  An application to catch, search and analyze HTTP secure headers.
  ☆63Updated 3 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆61Updated last year
• OWASP / www-project-integration-standards
  OWASP Foundation Web Respository
  ☆27Updated 3 months ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆138Updated 3 years ago
• koenbuyens / Vulnerable-OAuth-2.0-Applications
  vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
  ☆307Updated 7 months ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 3 months ago
• OWASP / www-project-secure-coding-practices-quick-reference-guide
  OWASP Foundation Project Web Repository for Secure Coding Practices Quick-reference Guide
  ☆64Updated 6 months ago
• NeuraLegion / brokencrystals
  A Broken Application - Very Vulnerable!
  ☆131Updated 2 weeks ago
• OWASP / threat-dragon-desktop
  Desktop variant of OWASP Threat Dragon
  ☆77Updated 3 years ago
• ivision-research / vulnerable-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆57Updated 3 years ago