An extensive list of resources related to threat modelling. Gotta catch ’em all!
☆49Apr 29, 2026Updated last month
Alternatives and similar repositories for threats
Users that are interested in threats are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A small tool to help developers understand a huge set of security requirements from appsec teams☆47Sep 2, 2022Updated 3 years ago
- NIVA is a simple web application which is intentionally vulnerable to NoSQL injection. The purpose of this project is to facilitate a bet…☆19Nov 21, 2022Updated 3 years ago
- Flowlyt is a security analyzer that scans GitHub Actions workflows to detect malicious patterns, misconfigurations, and secrets exposure,…☆16May 5, 2026Updated last month
- This directory focuses exclusively on Threat Modeling Tools—software, code, libraries, or services that automate, guide, or support the d…☆23May 2, 2026Updated last month
- OWASP Foundation web repository☆45May 25, 2026Updated 2 weeks ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Generate xBOMs enriched with AI, SaaS, Crypto and more using Static Code Analysis☆32Jan 22, 2026Updated 4 months ago
- Threat Modeling Manifesto☆31May 28, 2026Updated 2 weeks ago
- ☆13Dec 3, 2025Updated 6 months ago
- Http Security Headers Checker Tool written in PHP Cli + Useful Tips to set Http Security Headers☆10Mar 27, 2021Updated 5 years ago
- ☆19Feb 3, 2026Updated 4 months ago
- Learning playground for Argus-SAF☆10Dec 27, 2018Updated 7 years ago
- Sample SecOps scripts and Utilities☆12Jun 19, 2024Updated last year
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆184Dec 11, 2025Updated 6 months ago
- R.A.Y.D.E.R revolutionizes security testing for generative AI by letting you test chatbots directly through their web interfaces. No API …☆19Mar 16, 2026Updated 2 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- InfoSec OpenAI Examples☆19Nov 26, 2023Updated 2 years ago
- Get new vulnerability alerts daily straight to your slack channel using GitHub Actions.☆16Jan 15, 2026Updated 4 months ago
- Damn Vulnerable Browser Extension (DVBE), previously named as Badly Coded Browser Extension (BCBE), is an open-source vulnerable Chrome E…☆33Mar 4, 2025Updated last year
- ☆63Jun 3, 2025Updated last year
- Simple authentication toolkit for works with Yubikey☆14Jun 2, 2026Updated last week
- Image Payload Creating/Injecting tools☆13Jun 6, 2021Updated 5 years ago
- Hands-on practical use of HTTP security headers as browser security controls to help secure web applications☆21May 18, 2026Updated 3 weeks ago
- ☆35Dec 10, 2020Updated 5 years ago
- Harness the security superpowers of your cloud asset inventory☆11Sep 22, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Monitor your domains for newly issued certificates and alert to Slack in near-realtime☆10Aug 29, 2022Updated 3 years ago
- Dataset fingerprinting for AIBOM☆16Updated this week
- This repository is simply documenting the installation of the MagicMirror2 program on a Linux distro, not a Raspberry Pi.☆14Oct 21, 2020Updated 5 years ago
- Burp Suite Configuration Tweak☆13Mar 15, 2024Updated 2 years ago
- Welcome to the Camunda Community Hub! This is the starting point for those interested in joining and contributing to the Camunda Communi…☆22Dec 9, 2025Updated 6 months ago
- ☆26Aug 31, 2023Updated 2 years ago
- Invadium runs exploit playbooks against vulnerable target applications in an intuitive, reproducible, and well-defined manner.☆11Apr 27, 2023Updated 3 years ago
- Risks and targets for assessing LLMs & LLM vulnerabilities☆35May 27, 2024Updated 2 years ago
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.☆165Mar 14, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- Honeyquest is a cyber security game that asks humans to distinguish neutral, risky, and deceptive payloads. Honeyquest presents participa…☆14Jan 8, 2026Updated 5 months ago
- ☆15Apr 13, 2026Updated last month
- threatspec - continuous threat modeling, through code☆387Dec 30, 2020Updated 5 years ago
- ROS package dependency scanner☆10Mar 11, 2020Updated 6 years ago
- A comprehensive framework and assessment toolkit for measuring and improving Cloud Native security maturity across 8 critical business fu…☆10Jun 24, 2025Updated 11 months ago
- CrewAI-Agentic-Jira: Enhance your Jira workflows with intelligent agent-driven automation. Powered by the CrewAI framework, this project …☆22Feb 3, 2025Updated last year