ZupIT / horusecLinks
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
☆1,296Updated last week
Alternatives and similar repositories for horusec
Users that are interested in horusec are comparing it to the libraries listed below
Sorting:
- Performing security tests inside your CI☆588Updated last year
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…☆553Updated 3 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆863Updated 2 years ago
- A laboratory for learning secure web and mobile development in a practical manner.☆970Updated last year
- RegVuln is a tool that use Engine Trivy to generate reports about images Docker from Registry, have integration with Defect Dojo to Vulne…☆16Updated last year
- Checklist for container security - devsecops practices☆1,611Updated 4 months ago
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆422Updated last year
- Security Champions Playbook v 2.1☆390Updated 2 years ago
- ☆422Updated 3 years ago
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.☆1,020Updated last month
- It contains the pipelines for each application inside this development group. It brings the complete SSDLC, with SAST, SCA, SSCA, and Tes…☆20Updated this week
- An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses☆1,758Updated 6 months ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆1,072Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆597Updated 10 months ago
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,205Updated 2 weeks ago
- secureCodeBox (SCB) - continuous secure delivery out of the box☆955Updated this week
- OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.☆357Updated last week
- A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.☆2,188Updated last year
- Automating situational awareness for cloud penetration tests.☆2,290Updated last week
- Conviso Vulnerable Web Application is the OSS project from the Conviso Application Security for the community. The project represents a v…☆63Updated 6 months ago
- An open source threat modeling tool from OWASP☆1,310Updated last week
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆767Updated last year
- Junção de conteúdos, dicas e considerações da comunidade do Br de AppSec para divulgar a palavra do DevSecOps e orientar aspirantes que n…☆261Updated last year
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆712Updated 2 years ago
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,567Updated last week
- Conteúdo em português sobre segurança em Dispositivos Móveis.☆190Updated last year
- Threat matrix for CI/CD Pipeline☆760Updated last year
- A comprehensive list of software composition analysis tools.☆162Updated 3 months ago
- ☆560Updated last week
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆996Updated 2 weeks ago