TNG / elevation-of-privilegeLinks
An online multiplayer version of the threat modeling card games: Elevation of Privilege (EoP), OWASP Cornucopia, OWASP Cumulus, and Elevation of MLsec.
☆77Updated this week
Alternatives and similar repositories for elevation-of-privilege
Users that are interested in elevation-of-privilege are comparing it to the libraries listed below
Sorting:
- ☆111Updated last year
- Agile Threat Modeling Toolkit☆702Updated last month
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆583Updated 6 months ago
- SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…☆181Updated last week
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆798Updated this week
- boostsecurityio/poutine☆332Updated last week
- ☆540Updated last week
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆410Updated last week
- A standard API specification for exchanging supply chain artifacts and intelligence☆86Updated last week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆177Updated 10 months ago
- Cumulus. Threat modeling the Clouds.☆23Updated 3 months ago
- The Elevation of Privilege Threat Modeling Game☆337Updated last year
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆245Updated last week
- threatspec - continuous threat modeling, through code☆368Updated 4 years ago
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆431Updated last week
- Host and manage multiple Juice Shop instances for security trainings and Capture The Flags☆296Updated this week
- Sunshine - SBOM visualization tool☆69Updated last week
- An extensive list of resources related to threat modelling. Gotta catch ’em all!☆40Updated 2 weeks ago
- The "TaSK Framework" is a configurable test tool for performing TLS conformity tests based on the Technical Guideline TR-03116-TS.☆139Updated 2 years ago
- Cumulus. Threat modeling the Clouds.☆39Updated last year
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆215Updated 4 months ago
- An online multiplayer version of the Elevation of Privilege (EoP) threat modeling card game☆147Updated 2 months ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆498Updated this week
- Machine-readable specification for the attestation of security-relevant data.☆63Updated 3 weeks ago
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆192Updated this week
- ☆123Updated 3 weeks ago
- App that simplifies building decision trees to model adverse scenarios☆218Updated last year
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆88Updated last week
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆165Updated this week
- A utility to (re-)import findings and language data into DefectDojo☆43Updated last year