bancolombia / devsecops-engine-toolsLinks
Toolchain for the evaluation of different devsecops practices
☆43Updated this week
Alternatives and similar repositories for devsecops-engine-tools
Users that are interested in devsecops-engine-tools are comparing it to the libraries listed below
Sorting:
- A comprehensive list of software composition analysis tools.☆162Updated 3 months ago
- A utility to (re-)import findings and language data into DefectDojo☆43Updated last year
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆139Updated 2 years ago
- A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.☆111Updated last year
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆81Updated last month
- OWASP Foundation Web Respository☆56Updated 4 months ago
- Sharing software supply chain security open source projects☆53Updated 3 years ago
- OWASP Kubernetes security and compliance tool [WIP]☆108Updated 2 years ago
- Scans your Github Actions for security issues☆88Updated this week
- A full insecure kubernetes application for testing security tools☆90Updated 3 months ago
- A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.☆151Updated last week
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆68Updated 7 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆46Updated 3 years ago
- NextJS-based single-page application for completing and reviewing SAMM assessments☆79Updated 2 years ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆179Updated last month
- ☆559Updated this week
- OWASP Project Developer Guide - Document and Project Web pages☆115Updated last week
- OWASP Foundation Web Respository☆101Updated last month
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆135Updated this week
- The security workflow engine!☆136Updated 2 months ago
- Checkmarx Python SDK☆30Updated 3 weeks ago
- OWASP Foundation Web Respository☆45Updated last month
- Curating Falco rules with MITRE ATT&CK Matrix☆88Updated last year
- Discover vulnerabilities and container image misconfiguration in production environments.☆55Updated 3 weeks ago
- Checkmarx Scan and Result Orchestration☆99Updated last month
- Awesome resources about Security in Kubernetes☆46Updated 3 years ago
- ☆138Updated last week
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated 6 months ago
- OWASP Foundation Web Respository☆22Updated 3 months ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Updated 2 years ago