Alternatives and similar repositories for asvs

Users that are interested in asvs are comparing it to the libraries listed below

• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆124Updated 2 years ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆182Updated 6 years ago
• Santandersecurityresearch / DrHeader
  drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
  ☆111Updated 10 months ago
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆185Updated 3 months ago
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆195Updated 7 years ago
• secmerc / materialize-threats
  ☆69Updated 4 months ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆279Updated 2 months ago
• wurstbrot / security-pins
  Pin designs for security related items
  ☆37Updated last year
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 3 years ago
• shenril / owasp-asvs-checklist
  OWASP ASVS checklist for audits
  ☆208Updated last year
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆77Updated 4 years ago
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆129Updated 5 years ago
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆119Updated 7 years ago
• aparsons / bag-of-holding
  An application to assist in the organization and prioritization of software security activities.
  ☆139Updated 4 years ago
• duo-labs / secret-bridge
  Monitors Github for leaked secrets
  ☆203Updated last year
• iriusrisk / Community
  IriusRisk Community
  ☆68Updated 2 years ago
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆327Updated 3 years ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆370Updated 4 years ago
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆245Updated 4 years ago
• paypal / scorebot
  ☆57Updated 5 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 2 years ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆277Updated 2 years ago
• sethlaw / sputr
  Security Payload Unit Test Repository (SPUTR)
  ☆86Updated 2 years ago
• absoluteappsec / handouts
  materials we hand out
  ☆148Updated 4 months ago
• DefectDojo / Burp-Plugin
  A Burp plugin to export findings to DefectDojo
  ☆30Updated 2 years ago
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆43Updated 2 years ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 6 years ago
• magoo / ato-checklist
  A checklist of practices for organizations dealing with account takeover (ATO)
  ☆274Updated last year
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆65Updated 2 years ago
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆271Updated 5 years ago