Vendor Security Model Contract
☆97Jul 3, 2022Updated 3 years ago
Alternatives and similar repositories for vsmc
Users that are interested in vsmc are comparing it to the libraries listed below
Sorting:
- VSAQ is an interactive questionnaire application to assess the security programs of third parties.☆858Jan 11, 2021Updated 5 years ago
- SOAP is a free, online tool aimed at enabling civil society organisations and activist groups to build security policies that work for th…☆16Mar 23, 2024Updated last year
- Baseline organizational policies and practices☆10Apr 17, 2017Updated 8 years ago
- ⚖Open Source Toolkit for Conducting Quantitative Risk Assessment Interviews☆38Mar 10, 2024Updated last year
- This repository is a curated list of pro bono incident response entities.☆21Jun 21, 2023Updated 2 years ago
- ☆18Jul 30, 2024Updated last year
- Compares and analyzes GCP IAM roles.☆78Mar 9, 2025Updated 11 months ago
- ☆28Aug 6, 2020Updated 5 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆182Dec 7, 2018Updated 7 years ago
- ☆49Mar 21, 2023Updated 2 years ago
- This application was built to help reduce the amount of time it takes to review AWS Lambda code.☆61Nov 11, 2024Updated last year
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆103Jun 14, 2021Updated 4 years ago
- 🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.☆76Aug 22, 2024Updated last year
- ☆20Jan 18, 2022Updated 4 years ago
- Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.☆10Apr 3, 2022Updated 3 years ago
- ☆25Jun 27, 2024Updated last year
- Finders Keypers: AWS KMS Encryption Key Usage and Blast Radius Finder☆45Aug 13, 2025Updated 6 months ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆280Feb 17, 2026Updated last week
- Nexus plugin that provides WebHook notifications for stored (Maven) artifacts☆23Jun 9, 2012Updated 13 years ago
- Generate and Permutate Context Aware Dictionaries for Application Testing☆11Aug 16, 2016Updated 9 years ago
- A colour-coded radar chart to keep track of technologies in use, whether they are being evaluated, adopted or phased out.☆14Jan 6, 2021Updated 5 years ago
- RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…☆61Feb 5, 2025Updated last year
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Aug 29, 2021Updated 4 years ago
- Security, Compliance and Informational Dashboard System☆25May 12, 2021Updated 4 years ago
- Kantega Web Application Security Hero Challenge☆19Dec 3, 2020Updated 5 years ago
- EPSScall☆11Jun 10, 2022Updated 3 years ago
- OAuch is an open-source security best practices and threats analyzer for OAuth 2.0 authorization server implementations☆13Sep 4, 2025Updated 5 months ago
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆15Apr 10, 2025Updated 10 months ago
- Proof of concept about the privilege escalation flaw identified in Google's Osconfig☆10Sep 20, 2020Updated 5 years ago
- 🔀 Tools to Organize and Visualize Tweets Including Tweet Threads (WIP)☆10Apr 25, 2018Updated 7 years ago
- IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date☆97Jan 8, 2026Updated last month
- This repository hosts files relating to the TF-CSIRT Reference Security Incident Taxonomy Working Group.☆74Apr 4, 2025Updated 10 months ago
- ☆43Aug 27, 2025Updated 6 months ago
- The Marinus NodeJS UI and the supporting Python analysis scripts.☆62Feb 15, 2026Updated 2 weeks ago
- ☆69Jul 18, 2025Updated 7 months ago
- egrets monitors egress☆47Apr 12, 2020Updated 5 years ago
- Demonstrates how a malicious dependency could negatively impact the build output.☆25Aug 11, 2023Updated 2 years ago
- ☆114Jun 8, 2023Updated 2 years ago
- Query 'GreyNoise Intelligence 'API' in R☆14Mar 5, 2020Updated 5 years ago