Whitespots-OU / security-requirements-generatorView external linksLinks
A small tool to help developers understand a huge set of security requirements from appsec teams
☆46Sep 2, 2022Updated 3 years ago
Alternatives and similar repositories for security-requirements-generator
Users that are interested in security-requirements-generator are comparing it to the libraries listed below
Sorting:
- Simple mind maps for IoT security attack surfaces and methodologies☆17Aug 12, 2019Updated 6 years ago
- The Secure Coding Practices Quick-reference Guide from OWASP☆44Aug 13, 2025Updated 6 months ago
- A collection of permissively licensed Semgrep rules.☆22Jul 5, 2024Updated last year
- Redis Security Map - Anti-hacking for Redis☆31Mar 11, 2022Updated 3 years ago
- Regex patterns for manual application source code review☆33Dec 14, 2020Updated 5 years ago
- ☆124Nov 8, 2023Updated 2 years ago
- Java* Fuzzer for Android*☆12Nov 3, 2016Updated 9 years ago
- A file system that mutates files☆14Jul 20, 2020Updated 5 years ago
- Research Links for LLM Security☆17May 27, 2024Updated last year
- Awesome Secure Coding☆19Feb 10, 2025Updated last year
- Secure-D Web Application Security Test Checklist summarizes well-known weaknesses, vulnerabilities and best practices into review topics …☆21Sep 21, 2020Updated 5 years ago
- Notes and helper scripts/files/etc from when I passed my OSCP☆19Sep 17, 2019Updated 6 years ago
- Python script to generate a malicious MP4 file and start a CherryPy web server hosting a simple HTML page with the embedded file. Exploi…☆17Dec 8, 2015Updated 10 years ago
- A project in Golang that will create prefix-based magic MD5 hashes for type juggling.☆20Jul 29, 2018Updated 7 years ago
- Security Champions Playbook v 2.1☆390Sep 25, 2023Updated 2 years ago
- NextJS-based single-page application for completing and reviewing SAMM assessments☆79Mar 20, 2023Updated 2 years ago
- Segment's Threat Modeling training for our engineers☆245May 4, 2021Updated 4 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆76Jul 15, 2021Updated 4 years ago
- NIVA is a simple web application which is intentionally vulnerable to NoSQL injection. The purpose of this project is to facilitate a bet…☆19Nov 21, 2022Updated 3 years ago
- PowerShell script for hardening GE digital CIMPLICITY servers☆23Aug 12, 2021Updated 4 years ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆186Aug 28, 2025Updated 5 months ago
- Embedded AppSec Best Practices☆45Oct 22, 2025Updated 3 months ago
- Burp Suite Extension for inserting a magic byte into responder's request☆24Sep 22, 2023Updated 2 years ago
- The repository for Building visualisation platforms for OSINT data using open source solutions☆29Aug 21, 2018Updated 7 years ago
- Fork Threat Modeling Platform - Community☆27Oct 10, 2025Updated 4 months ago
- Vulnerable webapp testbed☆24May 11, 2016Updated 9 years ago
- Define AWS CDK applications declaratively☆62Apr 4, 2025Updated 10 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆179Dec 11, 2025Updated 2 months ago
- Repository for my talk on Desktop Bridge at Zer0Con 2018.☆33Mar 30, 2018Updated 7 years ago
- Practical Library Of Threats 4 Artificial Intelligence☆35Jun 19, 2025Updated 7 months ago
- Here are some common interview questions for an application security position you can review for your own interview, along with example a…☆31Apr 17, 2022Updated 3 years ago
- A PoC to Simulate Ransomware Attack on AWS Environment☆32Oct 14, 2024Updated last year
- A homebrew 3D software renderer developed for Nintendo's GameBoy Advance.☆25Feb 15, 2020Updated 6 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆68Jun 25, 2025Updated 7 months ago
- ☆53Jan 23, 2026Updated 3 weeks ago
- Want to become an Application Security Engineer? Here's a roadmap to help you get there.☆32Sep 3, 2022Updated 3 years ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)☆32Apr 21, 2023Updated 2 years ago
- 100 days of Go learning☆28Sep 22, 2021Updated 4 years ago
- Container Security and Serverless Training☆13Dec 8, 2022Updated 3 years ago