SecureStackCo / actions-exposure
A GitHub Action that scans your public web applications after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.
☆24Updated last year
Alternatives and similar repositories for actions-exposure:
Users that are interested in actions-exposure are comparing it to the libraries listed below
- A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging a…☆15Updated 3 years ago
- Adding this GitHub Action will scan your repository for sensitive data in your source code. We find things like passwords, server host s…☆30Updated last year
- SecureStack Application Bill of Materials (ABOM/SBOM)☆13Updated 2 years ago
- A GitHub Action for using SecureStack to analyse a repository codebase for vulnerabilities in library dependencies (software composition …☆22Updated 3 years ago
- A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, sta…☆24Updated last year
- All of our GitHub Actions rolled into one. Or as we like to say: One GitHub Action to rule them all!☆21Updated last year
- OWASP Foundation Web Respository☆31Updated 2 years ago
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated 11 months ago
- Collection of mine and others presentations on various topics like application security, python, cloud security, DevSecOps and so on... T…☆37Updated last month
- DefectDojo Community Content☆18Updated 6 months ago
- OWASP Foundation Web Respository☆28Updated 8 months ago
- An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites…☆17Updated last year
- ☆10Updated 2 years ago
- The Secure Coding Framework☆22Updated 4 years ago
- ☆100Updated 3 weeks ago
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆37Updated 3 years ago
- Maturity Model Collaborative project☆15Updated 2 years ago
- ☆41Updated 2 months ago
- This is a collection of ZAProxy Automation Tools and scripts to automate security tests of WEB Applications and WEB Sites☆28Updated last year
- Source code for the Binaries of OWASP WrongSecrets☆11Updated 3 weeks ago
- An ongoing collection of of AWS tools, frameworks, libraries, learning tutorials for InfoSec and security professionals☆22Updated 3 years ago
- MyOpenVDP is a free web application to install a vulnerability disclosure policy or a vulnerability disclosure program on your assets. (V…☆28Updated 8 months ago
- Sechead is a powerful security tool developed in Python that allows users to audit the security headers of any website. With Sechead, use…☆12Updated last year
- 📚A curated list of product security resources.☆19Updated 2 years ago
- ☆27Updated last year
- ZAP scripts to implement ASVS L1 checking☆15Updated 2 years ago
- Security tool against dependency typosquatting attacks☆39Updated this week
- Repo for Cybercloud Tutorials hosted at cybercloud.guru☆3Updated 7 months ago
- ATHI — An AI Threat Modeling Framework for Policymakers☆51Updated last year
- read the docs version of risk management☆25Updated 2 years ago