fortify / ssc-js-sandboxLinks
Fortify Software Security JavaScript sandbox
☆11Updated 2 years ago
Alternatives and similar repositories for ssc-js-sandbox
Users that are interested in ssc-js-sandbox are comparing it to the libraries listed below
Sorting:
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆61Updated 3 months ago
- ☆124Updated last year
- A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC☆33Updated 7 months ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆282Updated 3 weeks ago
- A checklist of practices for organizations dealing with account takeover (ATO)☆272Updated 11 months ago
- ☆418Updated 2 years ago
- Finding potential software vulnerabilities from git commit messages☆416Updated last year
- These are the regexes that power truffleHog☆218Updated 2 years ago
- Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands …☆942Updated 2 years ago
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆723Updated last year
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated last year
- Mitigate security concerns of Dependency Confusion supply chain security risks☆49Updated 2 months ago
- Static security checker for Dockerfiles☆95Updated last year
- A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets☆379Updated last year
- Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.☆640Updated 5 years ago
- Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…☆126Updated last year
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆103Updated last year
- Awesome Snyk community contributions, champions, integrations, blogs, tools and more 💜☆47Updated 3 years ago
- This is an offensive guide to securing AWS infrastructures. The hope is that by knowing how to take advantage of various types of AWS wea…☆172Updated 6 years ago
- ☆34Updated 4 years ago
- Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and s…☆373Updated 8 months ago
- This is a companion to the Security Engineer Questions☆204Updated last year
- ☆40Updated 5 years ago
- FestIn - Open S3 Bucket Scanner☆233Updated 4 years ago
- Security Remediation Guides☆739Updated 3 weeks ago
- A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration☆330Updated last week
- A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…☆524Updated 2 months ago
- Search exposed EBS volumes for secrets☆299Updated 2 years ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆149Updated 5 years ago
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki☆211Updated 10 months ago