devsecflow / Cloud-Native-Assurance-Maturity-ModelLinks
A comprehensive framework and assessment toolkit for measuring and improving Cloud Native security maturity across 8 critical business functions. Includes automated scoring, contextual recommendations, and evidence-based evaluation.
☆10Updated 2 months ago
Alternatives and similar repositories for Cloud-Native-Assurance-Maturity-Model
Users that are interested in Cloud-Native-Assurance-Maturity-Model are comparing it to the libraries listed below
Sorting:
- A full insecure kubernetes application for testing security tools☆89Updated 4 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆209Updated this week
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated last year
- A tool for preventing the installation of malicious npm and PyPI packages☆158Updated this week
- OWASP Foundation Web Respository☆97Updated 7 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆165Updated 2 months ago
- One Conference 2024☆111Updated 10 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆101Updated last year
- Generates runbooks for GuardDuty findings☆38Updated last year
- GitGuardian Canary Tokens☆137Updated 2 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆175Updated 9 months ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆114Updated 3 weeks ago
- ☆189Updated 4 months ago
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆90Updated 3 months ago
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆31Updated 10 months ago
- Test & Compare different Kubernetes security offerings on EKS, GKE and AKS☆40Updated last year
- ☆121Updated last week
- Cloud Offensive Breach and Risk Assessment (COBRA) Tool☆94Updated 3 months ago
- An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects☆33Updated 6 months ago
- The security workflow engine!☆119Updated this week
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆108Updated last year
- Summaries, transcripts, key points, and other useful insights from fwd:cloudsec 2025 talks for those of us who don't have time to watch e…☆76Updated last month
- ☆12Updated last year
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆103Updated last year
- A curated list of resources about detecting threats and defending Kubernetes systems.☆392Updated last year
- Generate datasets of cloud audit logs for common attacks☆218Updated last year
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆41Updated last month
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆287Updated 11 months ago
- AI featured threat modeling and security review action☆45Updated 9 months ago