aparsons / bag-of-holding
An application to assist in the organization and prioritization of software security activities.
☆138Updated 3 years ago
Alternatives and similar repositories for bag-of-holding:
Users that are interested in bag-of-holding are comparing it to the libraries listed below
- Content for 'JIRA Risk Project' book published at LeanPub☆57Updated 7 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆192Updated 6 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆179Updated 6 years ago
- Mittn: Security test tool runner for test automation in CI☆195Updated last year
- ☆63Updated 2 years ago
- Content for OWASP Summit 2017 site☆128Updated 4 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆278Updated this week
- AppSecPipeline Specification for DevOps automation.☆39Updated 2 years ago
- for AWS Security material☆246Updated 2 years ago
- Security Payload Unit Test Repository (SPUTR)☆86Updated last year
- A simple web app that helps developers understand the ASVS requirements.☆157Updated 2 weeks ago
- Google Cloud Platform Security Tool☆234Updated 5 years ago
- ☆57Updated 4 years ago
- ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…☆339Updated 2 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- A Java library for parsing and programmatically using threat models☆79Updated 2 years ago
- A repository for wardley maps related to security topics.☆47Updated 8 years ago
- ☆108Updated last year
- SAMM stands for Software Assurance Maturity Model.☆398Updated 2 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆73Updated 3 years ago
- Python installable command line utiltity for mitigation of host and key compromises.☆344Updated 3 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆48Updated 8 years ago
- SeaSponge is an accessible threat modelling tool from Mozilla☆278Updated 6 years ago
- Repo to hold mapping of user-security-stories☆114Updated 6 years ago
- INACTIVE - Security Testing Tool☆106Updated 9 years ago
- OWASP ASVS checklist for audits☆199Updated last year
- A Continuous Threat Modeling methodology☆314Updated 2 years ago
- An open source, online threat modelling tool from OWASP☆483Updated 7 months ago
- Segment's Threat Modeling training for our engineers☆241Updated 3 years ago
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.☆159Updated last year