Alternatives and similar repositories for FortifyVulnerabilityExporter

Users that are interested in FortifyVulnerabilityExporter are comparing it to the libraries listed below

• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆65Updated 11 months ago
• anunay-bhatt / secure-serverless-reference-architecture
  A walkthrough of security controls for a serverless architecture via a demo application
  ☆11Updated 3 years ago
• prancer-io / prancer-compliance-test
  This repository includes cloud security policies for IaC and live resources.
  ☆39Updated 11 months ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 11 months ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆56Updated last week
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆50Updated 2 years ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• DependencyTrack / gh-upload-sbom
  Publishes BOMs to Dependency-Track from GitHub Actions
  ☆54Updated 7 months ago
• nscuro / dtapac
  Audit Dependency-Track findings and policy violations via policy as code
  ☆33Updated this week
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆18Updated 7 months ago
• offensive-terraform / offensive-terraform.github.io
  Offensive Terraform Website
  ☆44Updated 4 years ago
• lightspin-tech / eks-creation-engine
  The Amazon Elastic Kubernetes Service (EKS) Creation Engine (ECE) is a Python command-line program created by the Lightspin Office of the…
  ☆40Updated 2 years ago
• awslabs / Chatbot-to-help-security-teams-perform-vulnerability-assessments
  ☆24Updated 2 months ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆77Updated last year
• chainguard-dev / github-audit-alerter
  Slack alert bot for matching Github Audit Events
  ☆10Updated 6 months ago
• philips-labs / blackduck-scanner-action
  BlackDuck GItHub Action
  ☆9Updated 2 years ago
• elastisys / security-review
  ☆16Updated 2 years ago
• aws-samples / iam-access-key-report
  ☆21Updated 2 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated last week
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated 2 years ago
• OWASP / threat-modeling-playbook
  ☆33Updated 3 years ago
• Mixeway / MixewayHub
  Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project…
  ☆109Updated last year
• hysnsec / awesome-sca
  A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.
  ☆105Updated 6 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• appvia / cosign-keyless-admission-webhook
  Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
  ☆23Updated last month
• spotify / gcp-aws-iam-federation-webidentity
  Creates needed resources for federating access between a GCP service account and AWS IAM role.
  ☆29Updated last year
• oxsecurity / codetotal
  Analyze any snippet, file, or repository to detect possible security flaws such as secret in code, open source vulnerability, code securi…
  ☆76Updated 9 months ago
• alcideio / iskan
  Kubernetes Native, Runtime Container Image Scanning
  ☆39Updated 3 years ago
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆84Updated 2 weeks ago