devsecops / raindance
Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
β48Updated 8 years ago
Alternatives and similar repositories for raindance:
Users that are interested in raindance are comparing it to the libraries listed below
- β63Updated 2 years ago
- ποΈ STRIDE vs. ASVS equivalence tableβ76Updated 7 months ago
- β35Updated 3 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.β73Updated 3 years ago
- AppSecPipeline Specification for DevOps automation.β39Updated 2 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMMβ193Updated 6 years ago
- OWASP Cloud Security - Enabling conversations through threat and control storiesβ179Updated 6 years ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)β30Updated last year
- OWASP Threat Dragon with Gitlab Integrationβ25Updated 7 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulneβ¦β31Updated 2 years ago
- A repository for wardley maps related to security topics.β47Updated 8 years ago
- Python API library for DefectDojoβ41Updated 2 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. β¦β61Updated 9 months ago
- IriusRisk Communityβ64Updated last year
- β123Updated last year
- Terraform module which provides easy to configure AWS environment for running automated security scanning solutions at scheduled intervalβ¦β46Updated 6 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.β64Updated 5 years ago
- β57Updated 4 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestratβ¦β278Updated this week
- OWASP Kubernetes Security Testing Guideβ37Updated 7 months ago
- Content for 'JIRA Risk Project' book published at LeanPubβ57Updated 7 years ago
- β20Updated 6 years ago
- A command line security audit tool for Amazon Web Servicesβ81Updated 6 years ago
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.β15Updated 3 years ago
- Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple β¦β41Updated 4 years ago
- β82Updated 5 years ago
- Open Threat Modeling Templateβ50Updated 8 months ago
- Pin designs for security related itemsβ37Updated 10 months ago
- Repo to hold mapping of user-security-storiesβ118Updated 6 years ago
- The Open Security Summit is focused on the collaboration between, Developers and Application Securityβ45Updated 3 months ago