aparsons / bag-of-holdingView external linksLinks
An application to assist in the organization and prioritization of software security activities.
☆139Jun 10, 2021Updated 4 years ago
Alternatives and similar repositories for bag-of-holding
Users that are interested in bag-of-holding are comparing it to the libraries listed below
Sorting:
- AppSecPipeline Specification for DevOps automation.☆40Dec 8, 2022Updated 3 years ago
- ☆14Jun 28, 2017Updated 8 years ago
- ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…☆342Dec 16, 2022Updated 3 years ago
- Application Security Automation☆526Sep 5, 2023Updated 2 years ago
- Content for 'JIRA Risk Project' book published at LeanPub☆58Feb 17, 2018Updated 8 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Nov 7, 2017Updated 8 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆195Aug 27, 2018Updated 7 years ago
- Forecast is a big data environment for understanding security anomalies as they are presented in a project and is meant to aid in the col…☆15Jun 17, 2016Updated 9 years ago
- Radar provides for early checks and review for software defined templates.☆18May 7, 2016Updated 9 years ago
- Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly☆12Jun 13, 2016Updated 9 years ago
- Mittn: Security test tool runner for test automation in CI☆196Jan 2, 2024Updated 2 years ago
- Automation for security☆13Apr 23, 2016Updated 9 years ago
- Repository for OWASP Code Review document☆17Jun 24, 2014Updated 11 years ago
- ☆12Aug 7, 2018Updated 7 years ago
- Content for 'Measuring Software Quality using Application Security' book published at LeanPub☆39Nov 6, 2016Updated 9 years ago
- Python API and REST API for the Checkmarx WSDL☆13Feb 11, 2016Updated 10 years ago
- A Java library for parsing and programmatically using threat models☆82Feb 15, 2023Updated 3 years ago
- Vendor-Neutral Security Tool Automation Controller (over REST)☆28Jun 28, 2019Updated 6 years ago
- ☆15Jul 9, 2020Updated 5 years ago
- SAMM stands for Software Assurance Maturity Model.☆398May 17, 2022Updated 3 years ago
- A curated threat modeling library collection☆24Dec 1, 2023Updated 2 years ago
- An open source, online threat modelling tool from OWASP☆484Jul 18, 2025Updated 6 months ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆186Aug 28, 2025Updated 5 months ago
- SharePoint scanner and fingerprinter based on WPScan☆25Oct 3, 2013Updated 12 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆280Feb 3, 2026Updated 2 weeks ago
- Break Apps with Frida workshop material☆46Oct 17, 2017Updated 8 years ago
- Open Threat Modeling Template☆52Jul 10, 2024Updated last year
- A repository for development of the TAXII Specifications. For official releases, please see http://taxiiproject.github.io/releases/☆41Nov 29, 2015Updated 10 years ago
- Get started with gauntlt right away with examples, install scripts and more☆51May 26, 2015Updated 10 years ago
- BDD Automated Security Tests for Web Applications☆568Nov 16, 2022Updated 3 years ago
- An AWS cross-account tool to support human access with MFA for the CLI and GUI.☆19Oct 16, 2018Updated 7 years ago
- Scripts that we use for pentesting☆42Feb 24, 2017Updated 8 years ago
- A Continuous Threat Modeling methodology☆324Jun 24, 2022Updated 3 years ago
- a ruggedization framework that embodies the principle "be mean to your code"☆995Jun 20, 2022Updated 3 years ago
- for AWS Security material☆249Apr 7, 2022Updated 3 years ago
- Security auditing tool for AWS environments☆1,725Nov 28, 2018Updated 7 years ago
- Security Champions Playbook v 2.1☆391Sep 25, 2023Updated 2 years ago
- Burp extension to use updated token values, such as a bearer token☆24Dec 2, 2022Updated 3 years ago
- Vendor Security Model Contract☆97Jul 3, 2022Updated 3 years ago