devsecopsmaturitymodel/DevSecOps-MaturityModel external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

devsecopsmaturitymodel/DevSecOps-MaturityModel

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/devsecopsmaturitymodel/DevSecOps-MaturityModel)

Close

devsecopsmaturitymodel / DevSecOps-MaturityModelView on GitHubMore

• External links
• Readme badge

☆563Updated this week

Alternatives and similar repositories for DevSecOps-MaturityModel

Users that are interested in DevSecOps-MaturityModel are comparing it to the libraries listed below

• OWASP / Maturity-Models

  View on GitHub
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆195Aug 27, 2018Updated 7 years ago
• OWASP / www-project-devsecops-maturity-model

  View on GitHub
  OWASP Foundation Web Respository
  ☆56Oct 4, 2025Updated 4 months ago
• OWASP / DevSecOpsGuideline

  View on GitHub
  The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.
  ☆1,026Jan 5, 2026Updated last month
• AppSecure-nrw / security-belts

  View on GitHub
  ☆115Jul 3, 2024Updated last year
• 6mile / DevSecOps-Playbook

  View on GitHub
  This is a step-by-step guide to implementing a DevSecOps program for any size organization
  ☆2,034Dec 21, 2024Updated last year
• hysnsec / awesome-threat-modelling

  View on GitHub
  A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for …
  ☆1,716Aug 2, 2024Updated last year
• Threagile / threagile

  View on GitHub
  Agile Threat Modeling Toolkit
  ☆725Nov 20, 2025Updated 3 months ago
• secureCodeBox / secureCodeBox

  View on GitHub
  secureCodeBox (SCB) - continuous secure delivery out of the box
  ☆956Updated this week
• DefectDojo / django-DefectDojo

  View on GitHub
  Open-Source Unified Vulnerability Management, DevSecOps & ASPM
  ☆4,532Updated this week
• threatspec / threatspec

  View on GitHub
  threatspec - continuous threat modeling, through code
  ☆379Dec 30, 2020Updated 5 years ago
• owaspsamm / sammwise

  View on GitHub
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆79Mar 20, 2023Updated 2 years ago
• c0rdis / security-champions-playbook

  View on GitHub
  Security Champions Playbook v 2.1
  ☆391Sep 25, 2023Updated 2 years ago
• OWASP / www-project-devsecops-guideline

  View on GitHub
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆82Dec 22, 2025Updated 2 months ago
• rung / threat-matrix-cicd

  View on GitHub
  Threat matrix for CI/CD Pipeline
  ☆759Jul 8, 2024Updated last year
• owaspsamm / core

  View on GitHub
  Core model including reused documentation
  ☆101Dec 16, 2025Updated 2 months ago
• OWASP / pytm

  View on GitHub
  A Pythonic framework for threat modeling
  ☆1,108Updated this week
• devsecops / awesome-devsecops

  View on GitHub
  An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
  ☆5,321May 11, 2024Updated last year
• edgeroute / security-champion-framework

  View on GitHub
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆110Jan 16, 2024Updated 2 years ago
• michenriksen / drawio-threatmodeling

  View on GitHub
  Draw.io libraries for threat modeling diagrams
  ☆786Nov 12, 2020Updated 5 years ago
• OWASP / threat-model-cookbook

  View on GitHub
  This project is about creating and publishing threat model examples.
  ☆428Nov 10, 2021Updated 4 years ago
• mrwadams / stride-gpt

  View on GitHub
  An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRI…
  ☆986Dec 28, 2025Updated 2 months ago
• slsa-framework / slsa

  View on GitHub
  Supply-chain Levels for Software Artifacts
  ☆1,814Feb 20, 2026Updated last week
• Toreon / threat-model-playbook

  View on GitHub
  ☆88Jul 28, 2021Updated 4 years ago
• OWASP / Software-Component-Verification-Standard

  View on GitHub
  Software Component Verification Standard (SCVS)
  ☆155Apr 1, 2025Updated 10 months ago
• cider-security-research / top-10-cicd-security-risks

  View on GitHub
  ☆423Jan 18, 2023Updated 3 years ago
• OWASP / ASVS

  View on GitHub
  Application Security Verification Standard
  ☆3,345Updated this week
• OWASP / samm

  View on GitHub
  SAMM stands for Software Assurance Maturity Model.
  ☆398May 17, 2022Updated 3 years ago
• sottlmarek / DevSecOps

  View on GitHub
  Ultimate DevSecOps library
  ☆6,595Jul 17, 2025Updated 7 months ago
• openclarity / openclarity

  View on GitHub
  OpenClarity is an open source platform built to enhance security and observability of cloud native applications and infrastructure
  ☆1,449Updated this week
• cncf / tag-security

  View on GitHub
  🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
  ☆2,256Dec 8, 2025Updated 2 months ago
• Vinum-Security / kubernetes-security-checklist

  View on GitHub
  Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, wor…
  ☆484Dec 13, 2021Updated 4 years ago
• owaspsamm / website

  View on GitHub
  The OWASP SAMM Website
  ☆11Feb 21, 2026Updated last week
• wurstbrot / security-pins

  View on GitHub
  Pin designs for security related items
  ☆37Feb 16, 2026Updated last week
• LuizBoina / dragon-gpt

  View on GitHub
  Dragon-GPT uses Chat-GPT, or local LLM, to execute automatic and AI-powered threat modeling analysis on a given OWASP Threat Dragon diagr…
  ☆41Jun 20, 2025Updated 8 months ago
• faloker / purify

  View on GitHub
  All-in-one tool for managing vulnerability reports from AppSec pipelines
  ☆108Jan 11, 2023Updated 3 years ago
• we45 / ThreatPlaybook

  View on GitHub
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆280Feb 17, 2026Updated last week
• stelligent / aws-devsecops-workshop

  View on GitHub
  A continuous security pipeline demo for the AWS DevSecOps Workshop.
  ☆45Jan 7, 2020Updated 6 years ago
• madhuakula / kubernetes-goat

  View on GitHub
  Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on p…
  ☆5,416Nov 18, 2025Updated 3 months ago
• ShiftLeftSecurity / sast-scan

  View on GitHub
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆868Sep 1, 2023Updated 2 years ago