Alternatives and similar repositories for RiskBasedPrioritization.github.io

Users that are interested in RiskBasedPrioritization.github.io are comparing it to the libraries listed below

• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆170Updated last week
• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆83Updated last year
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆52Updated 2 months ago
• IQTLabs / software-supply-chain-compromises
  A dataset of software supply chain compromises. Please help us maintain it!
  ☆129Updated 3 years ago
• secmerc / materialize-threats
  ☆69Updated 6 months ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆30Updated last year
• xvnpw / ai-threat-modeling-action
  AI featured threat modeling and security review action
  ☆45Updated last year
• mllamazares / STRIDE-vs-ASVS
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆76Updated last year
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆179Updated last month
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆63Updated 5 years ago
• Toreon / threat-model-playbook
  ☆88Updated 4 years ago
• adamshostack / DFD3
  ☆89Updated 4 months ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆215Updated this week
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆47Updated 9 years ago
• Deploying-Securely / DSRAM
  ☆16Updated 2 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆55Updated last month
• anchore / nvd-data-overrides
  ☆48Updated this week
• OWASP / www-project-cyber-defense-matrix
  Documentation on the Cyber Defense Matrix
  ☆24Updated 2 years ago
• OpenSecuritySummit / project-ASVS-User-Stories
  ☆20Updated 4 years ago
• kempy007 / VulManAgg
  Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)
  ☆32Updated 2 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 3 years ago
• joshua-m-connors / cyber-incident-mcmc-pymc
  Code that implements Factor Analysis of Information Risk (FAIR) in combination with MITRE ATT&CK using Markov Chain Monte Carlo (via PyMC…
  ☆44Updated last month
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆75Updated 2 years ago
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆43Updated 2 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆68Updated 7 months ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆139Updated 4 years ago
• DefectDojo / sample-scan-files
  Sample scan files for testing DefectDojo imports
  ☆85Updated 5 months ago
• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆54Updated 2 years ago
• adamshostack / conflictmodeling
  A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systems
  ☆57Updated 7 months ago