boostsecurityio / poutineLinks
boostsecurityio/poutine
☆309Updated last week
Alternatives and similar repositories for poutine
Users that are interested in poutine are comparing it to the libraries listed below
Sorting:
- A tool for preventing the installation of malicious npm and PyPI packages☆158Updated last week
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆110Updated 3 weeks ago
- Gram is Klarna's own threat model diagramming tool☆324Updated last month
- ☆82Updated 7 months ago
- Documenting your Threat Models with HCL☆433Updated 2 months ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆152Updated 9 months ago
- ☆189Updated 4 months ago
- The security workflow engine!☆119Updated this week
- A full insecure kubernetes application for testing security tools☆89Updated 4 months ago
- An open-source collection of API key rotation tutorials.☆72Updated 2 months ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆298Updated 3 weeks ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆815Updated 5 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆175Updated 9 months ago
- GitHub Actions Goat: Deliberately Vulnerable GitHub Actions CI/CD Environment☆478Updated 2 months ago
- App that simplifies building decision trees to model adverse scenarios☆216Updated last year
- A tool to check the security settings of Github Organizations.☆72Updated 2 years ago
- Validate the isolation posture of your container environment.☆297Updated 2 weeks ago
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆156Updated last year
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated last year
- HashiCorp-relevant rules for the Semgrep code analysis tool☆41Updated last year
- boostsecurityio/lotp☆132Updated 4 months ago
- AWS honey token manager☆87Updated last year
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆209Updated last week
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆116Updated 3 months ago
- ☆371Updated last year
- Runtime Security Solution for your CI/CD Pipeline☆108Updated 2 months ago
- OWASP Foundation Web Respository☆97Updated 7 months ago
- cloudgrep is grep for cloud storage☆326Updated 6 months ago
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆41Updated last month
- ☆114Updated 2 weeks ago