Alternatives and similar repositories for threat-modelling-labs

Users that are interested in threat-modelling-labs are comparing it to the libraries listed below

• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆129Updated last year
• chughes29 / DoD-Federal-Government-Cloud-Computing-Resources
  A collection of DoD and Federal Government Cloud Computing Resources
  ☆48Updated 4 years ago
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆106Updated last year
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 6 months ago
• tenchi-security / camp
  CloudSplaining on AWS Managed Policies
  ☆44Updated last month
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• raesene / container-security-site
  ☆102Updated 8 months ago
• chughes29 / state-of-cloud-security
  A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.
  ☆19Updated 4 years ago
• madhuakula / docker-security-checker
  Dockerfile Security Checker using OPA Rego policies with Conftest
  ☆62Updated 3 years ago
• marco-lancini / k8s-lab-plz
  Modular Kubernetes lab which provides an easy and streamlined way to deploy a test cluster with support for different components.
  ☆53Updated this week
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆56Updated last month
• cloudogu / k8s-security-demos
  Demos for several kubernetes security features
  ☆64Updated 8 months ago
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆56Updated this week
• tradichel / SecurityMetricsAutomation
  ☆41Updated 2 months ago
• accuknox / k8sthreatmodeling
  Threat Modeling (based on STRIDE approach) for Kubernetes systems.
  ☆25Updated 11 months ago
• chughes757 / SecureSoftwareSupplyChain
  This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.
  ☆139Updated 3 years ago
• marco-lancini / utils
  Useful scripts, Docker images, docker-compose apps, and Terraform modules.
  ☆151Updated last week
• trustoncloud / threatmodel-for-aws-s3
  Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆157Updated 2 years ago
• snyk-labs / kubernetes-goof
  Kubernetes Stranger Danger
  ☆66Updated 3 weeks ago
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆32Updated 11 months ago
• primeharbor / breaches.cloud
  https://breaches.cloud
  ☆42Updated 11 months ago
• ammarion / Take_Home_Exercise-
  ☆44Updated last month
• securekubernetes / securekubernetes
  Attacking and Defending Kubernetes Clusters: A Guided Tour
  ☆209Updated 4 years ago
• Optum / ChaoSlingr
  ChaoSlingr: Introducing Security into Chaos Testing
  ☆68Updated 6 years ago
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆106Updated 2 years ago
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Updated last year
• naman16 / AWS-Security-Guardrails-TF
  ☆31Updated 11 months ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆54Updated last year
• Venafi / blueprint-securesoftwarepipeline
  For engineers and security teams driving fast and secure software supply chains
  ☆83Updated 2 years ago
• Cybr-Inc / fwdcloudsec-2025-summaries
  Summaries, transcripts, key points, and other useful insights from fwd:cloudsec 2025 talks for those of us who don't have time to watch e…
  ☆80Updated 3 months ago