SecureStackCo / visualizing-software-supply-chainLinks
A project to visualize the software supply chain
β58Updated 2 years ago
Alternatives and similar repositories for visualizing-software-supply-chain
Users that are interested in visualizing-software-supply-chain are comparing it to the libraries listed below
Sorting:
- β114Updated 2 years ago
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β141Updated 3 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,β¦β139Updated 2 years ago
- boostsecurityio/lotpβ137Updated last week
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. β¦β68Updated 7 months ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).β83Updated last year
- Fork Threat Modeling Platform - Communityβ27Updated 3 months ago
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projectsβ102Updated 3 months ago
- Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Dataβ64Updated last month
- β61Updated 8 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metricsβ215Updated last week
- GCP GOAT is the vulnerable application for learn the GCP Securityβ70Updated 8 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsβ106Updated last year
- An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projectsβ34Updated 11 months ago
- InfoSec OpenAI Examplesβ19Updated 2 years ago
- β44Updated 3 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessmentsβ141Updated last year
- Maturity Model Collaborative projectβ15Updated 2 years ago
- β192Updated 9 months ago
- AI featured threat modeling and security review actionβ45Updated last year
- Focused malicious code detection ruleset, with a high protection-to-noise ratioβ141Updated 11 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teamsβ46Updated 3 years ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation oβ¦β101Updated 2 years ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chainβ97Updated 11 months ago
- ποΈ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.β76Updated last year
- Protect against subdomain takeoverβ95Updated 6 months ago
- A full insecure kubernetes application for testing security toolsβ90Updated 3 months ago
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where wβ¦β113Updated last year
- A framework for understanding the capabilities of automated detection methods at identifying classes of application security vulnerabilitβ¦β32Updated 3 weeks ago
- A tool to uncover undocumented APIs from the AWS Console.β116Updated 9 months ago