SecureStackCo / actions-exposureLinks
A GitHub Action that scans your public web applications after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
☆24Updated last year
Alternatives and similar repositories for actions-exposure
Users that are interested in actions-exposure are comparing it to the libraries listed below
Sorting:
- A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging a…☆15Updated 3 years ago
- Adding this GitHub Action will scan your repository for sensitive data in your source code. We find things like passwords, server host s…☆31Updated last year
- SecureStack Application Bill of Materials (ABOM/SBOM)☆13Updated 2 years ago
- A GitHub Action for using SecureStack to analyse a repository codebase for vulnerabilities in library dependencies (software composition …☆22Updated 3 years ago
- All of our GitHub Actions rolled into one. Or as we like to say: One GitHub Action to rule them all!☆21Updated last year
- A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, sta…☆24Updated last year
- Source code for the Binaries of OWASP WrongSecrets☆11Updated last week
- The Secure Coding Framework☆22Updated 4 years ago
- OWASP Foundation Web Respository☆31Updated 2 years ago
- ☆15Updated 3 weeks ago
- OWASP Foundation Web Respository☆28Updated 9 months ago
- Maturity Model Collaborative project☆15Updated 2 years ago
- AI/ML applications have unique security threats. Project GuardRail is a set of security and privacy requirements that AI/ML applications …☆29Updated 5 months ago
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated last year
- Raf Scanner IDE☆11Updated 2 years ago
- OWASP Foundation Web Respository☆10Updated 2 years ago
- Threat Modeling Manifesto☆28Updated 10 months ago
- A framework for understanding the capabilities of automated detection methods at identifying classes of application security vulnerabilit…☆14Updated this week
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆38Updated 3 years ago
- ☆16Updated 3 years ago
- ☆15Updated 3 years ago
- Golang installer for DefectDojo☆28Updated 4 months ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆31Updated 3 years ago
- InfoSec OpenAI Examples☆19Updated last year
- ☆73Updated 2 months ago
- OWASP ASVS Security Evaluation Templates with Nuclei☆35Updated last month
- An open-source collection of API key rotation tutorials.☆70Updated 2 months ago
- OWASP Project Developer Guide - Document and Project Web pages☆112Updated this week
- Automated process to build and distribute Posture & Exposure Reports' bi-weekly to customers.☆17Updated last year
- ☆16Updated last month