VerSprite / fork-communityLinks
Fork Threat Modeling Platform - Community
☆27Updated 3 months ago
Alternatives and similar repositories for fork-community
Users that are interested in fork-community are comparing it to the libraries listed below
Sorting:
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆139Updated 2 years ago
- A project to visualize the software supply chain☆58Updated 2 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆68Updated 7 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆47Updated 3 years ago
- Global Security Database Tools☆43Updated 2 years ago
- InfoSec OpenAI Examples☆19Updated 2 years ago
- Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data☆64Updated 3 weeks ago
- ☆114Updated 2 years ago
- Dependency Combobulator☆95Updated 2 years ago
- Maturity Model Collaborative project☆15Updated 2 years ago
- ☆10Updated 3 years ago
- A comprehensive framework for analyzing and defending against attacks targeting Software Development Life Cycle Infrastructure.☆50Updated this week
- GCP GOAT is the vulnerable application for learn the GCP Security☆70Updated 8 months ago
- ☆44Updated 3 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆42Updated last year
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆97Updated 11 months ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆74Updated 3 years ago
- Dragon-GPT uses Chat-GPT, or local LLM, to execute automatic and AI-powered threat modeling analysis on a given OWASP Threat Dragon diagr…☆41Updated 7 months ago
- ☆41Updated last year
- Tool to guess CPE name based on common software name☆110Updated 4 months ago
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆141Updated 11 months ago
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆29Updated 2 years ago
- Data about all known supply-chain attacks through history☆63Updated 8 months ago
- A community collection of security reviews of open source software components.☆96Updated last year
- A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs☆51Updated 2 years ago
- 🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.☆76Updated last year
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆135Updated last week
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆141Updated 2 months ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆30Updated 11 months ago
- boostsecurityio/lotp☆137Updated last week