finos / CatchITLinks
Source code secret scanner
☆53Updated 2 years ago
Alternatives and similar repositories for CatchIT
Users that are interested in CatchIT are comparing it to the libraries listed below
Sorting:
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated 3 months ago
- The Secure Coding Framework☆22Updated 5 years ago
- Scanner to identify dangling DNS records and subdomain takeovers☆49Updated 11 months ago
- A community collection of security reviews of open source software components.☆94Updated last year
- Sharing software supply chain security open source projects☆52Updated 2 years ago
- Secure Software Development Fundamentals courses (from the OpenSSF Best Practices WG)☆197Updated 3 months ago
- Software Component Verification Standard (SCVS)☆150Updated 7 months ago
- OWASP Foundation Web Respository☆56Updated last month
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated last year
- ☆124Updated this week
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆67Updated 4 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆138Updated last year
- This repository will teach you got to present my talk "Security is everybody's job", a talk about DevSecOps.☆27Updated 3 years ago
- ☆12Updated 4 years ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆105Updated last year
- Fork Threat Modeling Platform - Community☆26Updated 3 weeks ago
- ☆21Updated 3 years ago
- A Python library and command line interface for CVE Services.☆69Updated last month
- An open-source collection of API key rotation tutorials.☆74Updated last month
- A walkthrough of security controls for a serverless architecture via a demo application☆11Updated 3 years ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆116Updated last month
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆73Updated 2 years ago
- Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security☆114Updated 2 weeks ago
- OWASP Project Developer Guide - Document and Project Web pages☆114Updated 3 weeks ago
- A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs☆51Updated 2 years ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆191Updated last year
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆96Updated 8 months ago
- Exploit Prediction Scoring System (EPSS)☆30Updated 3 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year