Alternatives and similar repositories for invadium

Users that are interested in invadium are comparing it to the libraries listed below

• dynatrace-oss / unguard
  Unguard is an insecure cloud-native microservices demo application.
  ☆51Updated this week
• tcosolutions / betterscan
  Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan
  ☆859Updated 2 months ago
• arnepadmos / threats
  An extensive list of resources related to threat modelling. Gotta catch ’em all!
  ☆34Updated 3 months ago
• juice-shop / multi-juicer
  Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
  ☆286Updated this week
• PaloAltoNetworks / rbac-police
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆344Updated last month
• rpetrich / deciduous
  App that simplifies building decision trees to model adverse scenarios
  ☆210Updated 10 months ago
• entwicklerkollektiv-wien / wiener-git
  ☆13Updated last year
• trailofbits / it-depends
  A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…
  ☆358Updated 5 months ago
• synacktiv / octoscan
  Octoscan is a static vulnerability scanner for GitHub action workflows.
  ☆210Updated last month
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆267Updated last week
• mikeprivette / awesome-sec-challenges
  A curated list of Awesome Security Challenges.
  ☆183Updated 6 months ago
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆86Updated 3 weeks ago
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious PyPI and npm packages
  ☆144Updated this week
• clouditor / cloud-property-graph
  The Cloud Property Graph is based on a Code Property Graph and tries to connect static code analysis and Cloud runtime assessment.
  ☆25Updated 3 months ago
• ReversecLabs / IAMSpy
  ☆217Updated 5 months ago
• oracle / macaron
  Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD …
  ☆153Updated this week
• buildsec / frsca
  ☆235Updated this week
• chainguard-dev / ssc-reading-list
  A reading list for software supply-chain security.
  ☆363Updated 2 years ago
• bureado / awesome-software-supply-chain-security
  A compilation of resources in the software supply chain security domain, with emphasis on open source
  ☆319Updated 2 years ago
• ine-labs / GCPGoat
  GCPGoat : A Damn Vulnerable GCP Infrastructure
  ☆386Updated 6 months ago
• NeuraLegion / brokencrystals
  A Broken Application - Very Vulnerable!
  ☆159Updated last week
• ossf / s2c2f
  The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…
  ☆208Updated 3 months ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆56Updated 2 months ago
• ReversecLabs / IceKube
  ☆177Updated 3 weeks ago
• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆75Updated last year
• TNG / cumulus
  Cumulus. Threat modeling the Clouds.
  ☆38Updated 8 months ago
• google / kctf
  kCTF is a Kubernetes-based infrastructure for CTF competitions. For documentation, see
  ☆687Updated last month
• TupleType / awesome-cicd-attacks
  Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
  ☆515Updated 2 months ago
• vishalgarg-sec / Software-Supply-Chain-Security
  A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…
  ☆133Updated last year
• AppThreat / atom
  atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
  ☆65Updated this week