franksec42 / Vulnerability-management-maturity
Maturity Model Collaborative project
☆14Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Vulnerability-management-maturity
- AWS Security Checks☆36Updated 6 years ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆27Updated 2 years ago
- ☆14Updated last year
- Virtual Security Operations Center☆49Updated last year
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 3 years ago
- InfoSec OpenAI Examples☆19Updated 11 months ago
- ☆18Updated 4 years ago
- ☆37Updated 7 months ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- OWASP Threat Dragon with Gitlab Integration☆24Updated 7 years ago
- A tool for testing objects' permissions in AWS buckets☆39Updated 3 years ago
- GCP GOAT is the vulnerable application for learn the GCP Security☆62Updated last year
- Extensive code infrastructure for finding unintended information leaks in files, git repositories and much more.☆28Updated 2 years ago
- A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform☆12Updated 2 years ago
- Yet another open S3 bucket finder☆19Updated 6 years ago
- ZAP scripts to implement ASVS L1 checking☆15Updated 2 years ago
- OWASP Foundation Web Respository☆27Updated last year
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- A Burp plugin to export findings to DefectDojo☆30Updated last year
- ☆21Updated 3 years ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)☆30Updated last year
- ☆14Updated last year
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 3 months ago
- A wrapper around jq, to help you parse jq output!☆30Updated 4 years ago
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated 6 months ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆13Updated 2 years ago
- An LLM and OCR based Indicator of Compromise Extraction Tool☆31Updated 7 months ago
- ☆21Updated last year