Whitespots-OU / security-requirements-generatorLinks
A small tool to help developers understand a huge set of security requirements from appsec teams
โ47Updated 3 years ago
Alternatives and similar repositories for security-requirements-generator
Users that are interested in security-requirements-generator are comparing it to the libraries listed below
Sorting:
- ๐๏ธ STRIDE vs. ASVS equivalence tableโ77Updated last year
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. โฆโ66Updated 3 months ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.โ110Updated last year
- โ124Updated last year
- Semgrep rules corresponding to the OWASP ASVS standardโ27Updated 4 years ago
- โ61Updated 4 months ago
- AI featured threat modeling and security review actionโ44Updated 10 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.โ177Updated 10 months ago
- โ113Updated 2 years ago
- โ88Updated 4 years ago
- โ67Updated 2 months ago
- The Open Security Summit is focused on the collaboration between, Developers and Application Securityโ45Updated 2 months ago
- Segment's Threat Modeling training for our engineersโ245Updated 4 years ago
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity programโ43Updated 2 weeks ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.โ77Updated 4 years ago
- Protect against subdomain takeoverโ94Updated 2 months ago
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projectsโ92Updated last month
- NextJS-based single-page application for completing and reviewing SAMM assessmentsโ76Updated 2 years ago
- A framework for understanding the capabilities of automated detection methods at identifying classes of application security vulnerabilitโฆโ32Updated this week
- code reviews to practiceโ18Updated 4 years ago
- Create notes during a security code review in VSCode ๐ Import your favorite SAST tool findings ๐ ๏ธ and collaborate with others ๐คโ137Updated 6 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive filesโ226Updated 3 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsโ105Updated 8 months ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).โ79Updated last year
- ๐งฎ An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessmentโ161Updated 4 years ago
- LLM Testing Findings Templatesโ73Updated last year
- A project to visualize the software supply chainโ53Updated 2 years ago
- OWASP Foundation Web Respositoryโ98Updated 8 months ago
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.โ111Updated 8 months ago
- ๐งช Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.โ41Updated 9 months ago