dcodx / gitarmor
GitArmor is a handy tool that makes it easy to assess the secure setup of your DevOps platform.
☆13Updated 2 months ago
Alternatives and similar repositories for gitarmor:
Users that are interested in gitarmor are comparing it to the libraries listed below
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- This is a companion to the Security Engineer Questions☆202Updated last year
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆534Updated this week
- A full insecure kubernetes application for testing security tools☆70Updated this week
- A tool for preventing the installation of malicious PyPI and npm packages☆130Updated this week
- ☆98Updated 3 weeks ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated 9 months ago
- GitHub Advanced Security Policy as Code☆81Updated last week
- NextJS-based single-page application for completing and reviewing SAMM assessments☆72Updated 2 years ago
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆326Updated last week
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆148Updated 4 months ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆515Updated last month
- Examples of integrating the Snyk CLI into a CI/CD system☆87Updated 3 months ago
- An AWS IAM policy statement parser and query tool.☆175Updated last year
- GitHub action to scan container images with Palo Alto Networks' Prisma Cloud☆56Updated last week
- ☆164Updated 6 months ago
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆152Updated last year
- ☆364Updated 11 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆99Updated 4 months ago
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated last month
- boostsecurityio/poutine☆261Updated 3 weeks ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆273Updated 6 months ago
- Securely store, share, and access secrets alongside the codebase.☆33Updated 3 weeks ago
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆168Updated last week
- ☆115Updated last week
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- OWASP Domain Protect - prevent subdomain takeover☆400Updated 3 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆187Updated this week
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆138Updated 2 months ago
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆161Updated last year