Alternatives and similar repositories for Vulnerability-management-maturity

Users that are interested in Vulnerability-management-maturity are comparing it to the libraries listed below

• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated 2 years ago
• nccgroup / ccs
  ☆114Updated 2 years ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆52Updated 2 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆70Updated 7 months ago
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆62Updated last week
• bin3xish477 / ghast
  GHAST (GitHub Actions Static Analysis Tool) is a tool to analyze the security posture of your GitHub Actions and its surrounding environm…
  ☆21Updated 2 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Updated 3 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆68Updated 6 months ago
• apiiro / combobulator
  Dependency Combobulator
  ☆95Updated 2 years ago
• P3tra-WP / Jupyter-Threat
  ☆14Updated 3 years ago
• piercing-index / cloud-vulnerabilities
  ☆44Updated 2 months ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆40Updated 7 years ago
• iknowjason / hammer
  An example of a mis-configured Rails application release under MIT license.
  ☆21Updated 2 years ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆42Updated 2 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆75Updated last year
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated 2 years ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 5 years ago
• offensive-terraform / terraform-aws-ec2-kali-linux
  Offensive Terraform module which creates Kali Linux from the AWS marketplace and installs cloud security tools (Pacu, Cloudsplaining, Sco…
  ☆18Updated 5 years ago
• xvnpw / sec-docs
  An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects
  ☆34Updated 10 months ago
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• anshumanbh / cyber-safari
  A fun POC that is built to understand AI security agents.
  ☆34Updated 2 months ago
• YaleUniversity / ZAP_ASVS_Checks
  ZAP scripts to implement ASVS L1 checking
  ☆16Updated 3 years ago
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆11Updated 4 years ago
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆55Updated 2 years ago
• KennaSecurity / toolkit
  Kenna Security API and Scripting Toolkit
  ☆34Updated 2 weeks ago
• dagheyman / awesome-product-security
  📚A curated list of product security resources.
  ☆22Updated 7 months ago
• cedowens / aws-cli-notes
  A combined list of helpful awscli commands from Scott Piper's flaws.cloud exercise as well as from Beau Bullock's Breaching the Cloud Tra…
  ☆19Updated 4 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 5 years ago
• faloker / purify
  All-in-one tool for managing vulnerability reports from AppSec pipelines
  ☆108Updated 3 years ago
• prevade / cloudjack
  Route53/CloudFront Vulnerability Assessment Utility
  ☆87Updated 2 years ago