Alternatives and similar repositories for Vulnerability-management-maturity

Users that are interested in Vulnerability-management-maturity are comparing it to the libraries listed below

• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated 2 years ago
• nccgroup / ccs
  ☆114Updated 2 years ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆70Updated 7 months ago
• nicolasriverocorvalan / cloud-sniper
  Virtual Security Operations Center
  ☆52Updated 2 years ago
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆62Updated last week
• nccgroup / cowcloud
  ☆60Updated 2 years ago
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆33Updated 3 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆68Updated 5 months ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 5 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆94Updated last year
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆55Updated 2 years ago
• iknowjason / hammer
  An example of a mis-configured Rails application release under MIT license.
  ☆21Updated 2 years ago
• bin3xish477 / ghast
  GHAST (GitHub Actions Static Analysis Tool) is a tool to analyze the security posture of your GitHub Actions and its surrounding environm…
  ☆21Updated 2 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆75Updated last year
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆38Updated last year
• piercing-index / cloud-vulnerabilities
  ☆44Updated 2 months ago
• sebastian-mora / awsssome_phish
  AWS SSO serverless phishing API.
  ☆32Updated 4 years ago
• xvnpw / sec-docs
  An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects
  ☆34Updated 9 months ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆78Updated 3 years ago
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆11Updated 4 years ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆50Updated 2 years ago
• offensive-terraform / terraform-aws-ec2-kali-linux
  Offensive Terraform module which creates Kali Linux from the AWS marketplace and installs cloud security tools (Pacu, Cloudsplaining, Sco…
  ☆18Updated 5 years ago
• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆89Updated 3 years ago
• faloker / purify
  All-in-one tool for managing vulnerability reports from AppSec pipelines
  ☆108Updated 2 years ago
• mihir-shah99 / vxdf
  ☆63Updated 6 months ago
• anshumanbh / cyber-safari
  A fun POC that is built to understand AI security agents.
  ☆34Updated last month
• lightspin-tech / red-bucket-gcp
  ☆10Updated 3 years ago
• nightwatchcybersecurity / gitbleed_tools
  ☆90Updated 3 years ago
• P3tra-WP / Jupyter-Threat
  ☆14Updated 3 years ago
• tenable / hidden-services-revealer
  ☆39Updated last year