Santandersecurityresearch / asvs
A simple web app that helps developers understand the ASVS requirements.
☆154Updated 8 months ago
Related projects ⓘ
Alternatives and complementary repositories for asvs
- ☆121Updated last year
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆274Updated this week
- ☆61Updated last year
- OWASP Cloud Security - Enabling conversations through threat and control stories☆177Updated 5 years ago
- threatspec - continuous threat modeling, through code☆332Updated 3 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆104Updated 10 months ago
- Segment's Threat Modeling training for our engineers☆238Updated 3 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 2 months ago
- A Continuous Threat Modeling methodology☆313Updated 2 years ago
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.☆105Updated 3 weeks ago
- Content for OWASP Summit 2017 site☆128Updated 4 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated last year
- This project is about creating and publishing threat model examples.☆409Updated 3 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆188Updated 6 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆71Updated 3 years ago
- OWASP ASVS checklist for audits☆193Updated 10 months ago
- materials we hand out☆138Updated last month
- NextJS-based single-page application for completing and reviewing SAMM assessments☆69Updated last year
- ☆80Updated 3 years ago
- Open source security career ladders☆113Updated last year
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆46Updated 7 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆61Updated last year
- OWASP Threat Dragon core files☆28Updated 3 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated last year
- Security Champions Playbook v 2.1☆350Updated last year
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆133Updated 4 years ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆175Updated 3 months ago
- Find cloud assets that no one wants exposed 🔎 ☁️☆332Updated 4 years ago
- ☆33Updated 3 years ago