Alternatives and similar repositories for Vulnerability-management-maturity

Users that are interested in Vulnerability-management-maturity are comparing it to the libraries listed below

• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated last year
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆51Updated 2 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆67Updated 5 months ago
• bin3xish477 / ghast
  GHAST (GitHub Actions Static Analysis Tool) is a tool to analyze the security posture of your GitHub Actions and its surrounding environm…
  ☆21Updated 2 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆67Updated 3 months ago
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• P3tra-WP / Jupyter-Threat
  ☆14Updated 2 years ago
• nccgroup / ccs
  ☆114Updated 2 years ago
• xvnpw / ai-threat-modeling
  AI featured threat modeling and security review project
  ☆16Updated 11 months ago
• faloker / purify
  All-in-one tool for managing vulnerability reports from AppSec pipelines
  ☆108Updated 2 years ago
• piercing-index / cloud-vulnerabilities
  ☆41Updated last week
• anshumanbh / cyber-safari
  A fun POC that is built to understand AI security agents.
  ☆33Updated 10 months ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆28Updated 4 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆40Updated 7 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆77Updated last year
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 4 years ago
• mihir-shah99 / vxdf
  ☆62Updated 4 months ago
• iknowjason / hammer
  An example of a mis-configured Rails application release under MIT license.
  ☆20Updated 2 years ago
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• cytix-software / AppSec-Detection-Framework
  A framework for understanding the capabilities of automated detection methods at identifying classes of application security vulnerabilit…
  ☆32Updated this week
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆32Updated 3 years ago
• kempy007 / VulManAgg
  Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)
  ☆31Updated 2 years ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆29Updated last year
• BishopFox / llm-testing-findings
  LLM Testing Findings Templates
  ☆74Updated last year
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆11Updated 3 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Updated 3 years ago
• offensive-terraform / terraform-aws-ec2-kali-linux
  Offensive Terraform module which creates Kali Linux from the AWS marketplace and installs cloud security tools (Pacu, Cloudsplaining, Sco…
  ☆18Updated 5 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 5 years ago
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆52Updated 4 months ago
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆35Updated 10 months ago