Alternatives and similar repositories for common_security_pipeline:

Users that are interested in common_security_pipeline are comparing it to the libraries listed below

• yandex / securitygym
  ☆75Updated 3 years ago
• dvyakimov / BSIMM_ru
  Перевод BSIMM (https://www.bsimm.com) на русский язык
  ☆22Updated 2 years ago
• empty-jack / YAASC
  A list of checks with tips for analyzing the security of Android applications
  ☆12Updated 5 years ago
• avito-tech / deepsecrets
  Secrets scanner that understands code
  ☆189Updated last year
• vankyver / directus-aspm-poc
  PoC of using Directus as ASPM
  ☆11Updated 10 months ago
• yandex-cloud / cq-source-yc
  Yandex Cloud CloudQuery source plugin
  ☆19Updated 2 months ago
• fbkcs / AdvancedWebHackingWorkshop
  Examples for Advanced Web Hacking Workshop
  ☆35Updated 5 years ago
• exness / security-bot
  ☆29Updated last year
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆45Updated 2 years ago
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆41Updated 2 years ago
• Jet-Security-Team / DevSecOps-Assessment-Framework
  DevSecOps Assessment Framework
  ☆84Updated 3 months ago
• Swordfish-Security / Pentest-In-Docker
  Docker image to exploit RCE, try for pentest methods and test container security solutions (trivy, falco and etc.)
  ☆89Updated 4 years ago
• averonesis / kubolt
  Kubolt utility for scanning public kubernetes clusters
  ☆109Updated 10 months ago
• Swordfish-Security / awesome-devsecops-russia
  Awesome DevSecOps на русском языке
  ☆314Updated last year
• webr0ck / 3D-Secure-audit-cheatsheet
  ☆42Updated 4 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆102Updated last year
• vxcontrol / soldr
  System of Orchestration, Lifecycle control, Detection and Response
  ☆58Updated last year
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 4 years ago
• sorokinpf / docker_opa
  OPA policies for securing Docker API
  ☆11Updated last year
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆123Updated last year
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 4 years ago
• annmuor / freeaudit
  Packaging audit toolkit using vulners.com vulnerability database
  ☆19Updated 7 years ago
• devopshq / dohq-ai-best-practices
  Внедрение и эксплуатация PT Application Inspector. Подробнее: https://habr.com/ru/company/pt/blog/557142/
  ☆34Updated 2 years ago
• ozontech / dtrack-audit
  OWASP Dependency Track API client for intergration into CI/CD pipeline
  ☆53Updated 8 months ago
• racepwn / racepwn
  Race Condition framework
  ☆269Updated 2 years ago
• digininja / authlab
  A lab to play with authentication and authorisation problems
  ☆95Updated 2 years ago
• dsp25no / php-chain
  ☆13Updated 4 years ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆104Updated 2 months ago
• devkekops / checkkarlmarx
  Careful tool for security checking release apk/ipa files
  ☆37Updated 3 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 2 years ago