Alternatives and similar repositories for access

Users that are interested in access are comparing it to the libraries listed below

• tailscale / security-policies
  Security policies for Tailscale
  ☆292Updated last month
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆430Updated last week
• vendorsec / mvsp
  Minimum Viable Secure Product mvsp.dev
  ☆193Updated 5 months ago
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆70Updated 2 months ago
• crashappsec / chalk
  Chalk allows you to follow code from development, through builds and into production.
  ☆376Updated this week
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆172Updated this week
• tailscale / ToBeReviewedBot
  GitHub App to watch for PRs merged without a reviewer approving.
  ☆125Updated last month
• fwdcloudsec / known_aws_accounts
  List of known AWS accounts
  ☆210Updated last month
• cloudflare / har-sanitizer
  ☆210Updated 8 months ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆282Updated this week
• northpolesec / santa
  A binary and file access authorization system for macOS.
  ☆289Updated this week
• openai / openai-security-bots
  ☆368Updated last year
• klarna-incubator / gram
  Gram is Klarna's own threat model diagramming tool
  ☆320Updated 2 weeks ago
• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆149Updated 6 months ago
• tldrsec / awesome-secure-defaults
  Awesome secure by default libraries to help you eliminate bug classes!
  ☆692Updated last month
• singe / tidcli
  A simple touchID prompt'er for use in shell scripts.
  ☆97Updated 11 months ago
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆482Updated this week
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆73Updated 7 months ago
• octo-sts / app
  A GitHub App that acts like a Security Token Service (STS) for the Github API
  ☆192Updated this week
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆144Updated 11 months ago
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆87Updated 10 months ago
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious PyPI and npm packages
  ☆146Updated last week
• ReversecLabs / IAMSpy
  ☆217Updated 5 months ago
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆315Updated 11 months ago
• apiiro / malicious-code-ruleset
  Focused malicious code detection ruleset, with a high protection-to-noise ratio
  ☆120Updated 3 months ago
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆110Updated this week
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆125Updated 7 months ago
• opengrep / opengrep-rules
  ☆68Updated 4 months ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆71Updated last year
• cloud-copilot / iam-simulate
  An IAM Simulator that outputs detailed explains of how a request was evaluated.
  ☆79Updated last week