coinbase / salus
We would like to request that all contributors please clone a *fresh copy* of this repository since the September 21st maintenance.
☆22Updated 10 months ago
Related projects ⓘ
Alternatives and complementary repositories for salus
- goSDL☆523Updated 2 years ago
- Scan your code for security misconfiguration, search for passwords and secrets.☆638Updated last year
- Application Security Automation☆522Updated last year
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆808Updated last year
- OWASP Cloud Security - Enabling conversations through threat and control stories☆177Updated 5 years ago
- threatspec - continuous threat modeling, through code☆332Updated 3 years ago
- A project security/vulnerability/risk scanning tool☆358Updated 3 years ago
- a ruggedization framework that embodies the principle "be mean to your code"☆982Updated 2 years ago
- (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…☆635Updated 10 months ago
- Open source compliance tool for development platforms.☆286Updated last year
- A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…☆331Updated 8 months ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆147Updated 4 years ago
- A Continuous Threat Modeling methodology☆313Updated 2 years ago
- A simple HTTP proxy that fogs over naughty URLs☆1,114Updated 2 weeks ago
- all paths lead to clouds☆632Updated last year
- Open Cloud Security Posture Management Engine☆335Updated 2 years ago
- A service that analyzes docker images and scans for vulnerabilities☆1,587Updated last year
- Identify hardcoded secrets in static structured text☆476Updated last year
- An open source, online threat modelling tool from OWASP☆483Updated 4 months ago
- Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.☆721Updated 8 months ago
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆375Updated last week
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆274Updated last week
- Documenting your Threat Models with HCL☆402Updated 2 months ago
- A checklist of practices for organizations dealing with account takeover (ATO)☆263Updated last month
- Public version of PagerDuty's employee security training courses.☆411Updated last year
- A centralized source of all AWS IAM privilege escalation methods released by Rhino Security Labs.☆897Updated 5 years ago
- OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…☆365Updated this week
- Supply-chain Levels for Software Artifacts☆1,558Updated this week
- A tool to capture all the git secrets by leveraging multiple open source git searching tools☆1,112Updated 5 years ago