Shostack's 4 Question Frame for Threat Modeling
☆164Jan 8, 2026Updated last month
Alternatives and similar repositories for 4QuestionFrame
Users that are interested in 4QuestionFrame are comparing it to the libraries listed below
Sorting:
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆680Updated this week
- The Elevation of Privilege Threat Modeling Game☆343Jun 20, 2024Updated last year
- ☆91Sep 11, 2025Updated 5 months ago
- Takes a software bill of materials and outputs provenance, and activity data from trustypkg.dev☆10May 19, 2025Updated 9 months ago
- Terraform to run Scoutsuite security scan of projects within a Google Cloud Org. Report will be published to a GCS bucket.☆17Jan 5, 2026Updated 2 months ago
- Burp Enterprise Toolkit☆12Feb 25, 2022Updated 4 years ago
- ☆43Aug 27, 2025Updated 6 months ago
- Yet Another SCA tool�☆13Nov 10, 2022Updated 3 years ago
- Raptor - Web application firewall [ Stable ]☆15Dec 8, 2016Updated 9 years ago
- Optimizing scalable ML inference workloads with Amazon Elastic Inference and Amazon EKS☆16May 20, 2024Updated last year
- Short deep dive into Threat Hunting on AWS☆17Oct 15, 2023Updated 2 years ago
- A GitHub Action to trigger an Antithesis test suite.☆12Feb 11, 2026Updated 3 weeks ago
- A catalog of services that can be publicly exposed within different cloud providers.☆14Aug 30, 2024Updated last year
- Tool for signing and verifying the integrity of CloudFormation templates☆15Feb 16, 2023Updated 3 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Jan 16, 2024Updated 2 years ago
- A National Vulnerability Database (NVD) API query tool☆17Jun 27, 2023Updated 2 years ago
- AWS CloudFormation and CDK Construct Library for IAM Roles for EKS Service Accounts☆18May 11, 2024Updated last year
- AWS Trail Recon is an idea that came up during gohacking's offensive AWS security training. The idea is to use cloudtrail:lookupevents to…☆15May 14, 2024Updated last year
- Segment's Threat Modeling training for our engineers☆245May 4, 2021Updated 4 years ago
- OWASP Foundation Web Respository☆19Dec 22, 2025Updated 2 months ago
- Este repositorio é apenas um exemplo de como adicionar OWASP ZAP Actions em uma pipeline de DevOps.☆19Mar 12, 2021Updated 4 years ago
- A set of exercises to prepare for Certified Kubernetes Application Developer exam by Cloud Native Computing Foundation☆18Jun 7, 2021Updated 4 years ago
- Public repository of all things cloud security.☆47Sep 20, 2024Updated last year
- A parser for the SecRules Langue☆22Feb 9, 2026Updated 3 weeks ago
- A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.☆20Jan 24, 2021Updated 5 years ago
- Privacy Cards for Software Developers☆54May 17, 2019Updated 6 years ago
- ☆381Apr 18, 2024Updated last year
- Code for generating synthetic data for testing☆22Feb 1, 2022Updated 4 years ago
- CVE-2022-22965 - CVE-2010-1622 redux☆19Apr 18, 2023Updated 2 years ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆24Oct 4, 2021Updated 4 years ago
- Cybersecurity Architects Handbook, published by Packt☆27Mar 27, 2024Updated last year
- ☆255Feb 23, 2026Updated last week
- Threat Modeling Manifesto☆30Jul 18, 2024Updated last year
- AWS CDK construct library that can be used to deploy instances of the Construct Hub in any AWS Account.☆231Updated this week
- This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.☆649Updated this week
- Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…☆26Sep 26, 2023Updated 2 years ago
- ☆35Apr 10, 2025Updated 10 months ago
- Notes, Docs, CLI Commands and, Flashcards for AWS certified solutions architect - Associate Level☆30Jul 29, 2021Updated 4 years ago
- OWASP Foundation Web Respository☆26Jan 27, 2026Updated last month