Alternatives and similar repositories for FortifyVulnerabilityExporter:

Users that are interested in FortifyVulnerabilityExporter are comparing it to the libraries listed below

• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆62Updated 10 months ago
• DependencyTrack / gh-upload-sbom
  Publishes BOMs to Dependency-Track from GitHub Actions
  ☆53Updated 6 months ago
• anunay-bhatt / secure-serverless-reference-architecture
  A walkthrough of security controls for a serverless architecture via a demo application
  ☆11Updated 2 years ago
• MaibornWolff / dd-import
  A utility to (re-)import findings and language data into DefectDojo
  ☆43Updated 7 months ago
• OWASP / www-project-appsec-pipeline
  OWASP Foundation Web Respository
  ☆10Updated last year
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆55Updated 2 months ago
• tenable / Security-Hub
  For use in our Tenable.IO to AWS Security Hub integration
  ☆28Updated last month
• artis3n / course-vault-github-oidc
  Take this course to learn how to create fine-grained, least-privilege HashiCorp Vault roles for GitHub Action workflows using GitHub OIDC…
  ☆14Updated last year
• lightspin-tech / eks-creation-engine
  The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…
  ☆40Updated 2 years ago
• jetstack / dependency-track-exporter
  ☆24Updated 8 months ago
• hysnsec / awesome-sca
  A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.
  ☆103Updated 5 months ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• nscuro / dtapac
  Audit Dependency-Track findings and policy violations via policy as code
  ☆33Updated last week
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆49Updated 2 years ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆44Updated 4 years ago
• DefectDojo / godojo
  Golang installer for DefectDojo
  ☆27Updated 3 months ago
• snyk-tech-services / snyk2spdx
  ☆14Updated 2 years ago
• devsecops / x-bootcamp
  An extreme bootcamp to enable teams to build DevSecOps into their environment.
  ☆9Updated 8 years ago
• krol3 / kubernetes-security-checklist
  Awesome resources about Security in Kubernetes
  ☆42Updated 2 years ago
• anchore / grype-vscode
  Grype vulnerability check plugin for Visual Studio Code
  ☆22Updated 4 months ago
• OWASP / threat-modeling-playbook
  ☆33Updated 3 years ago
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆66Updated 10 months ago
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆106Updated last year
• michalkoczwara / DevSecOps-Studio
  Virtual environment for learning DevSecOps
  ☆33Updated 7 years ago
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆50Updated this week
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆55Updated 2 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 10 months ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆31Updated 6 months ago