Alternatives and similar repositories for threat-modeling:

Users that are interested in threat-modeling are comparing it to the libraries listed below

• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated last year
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 2 years ago
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• appsecco / owasp-threat-dragon-gitlab
  OWASP Threat Dragon with Gitlab Integration
  ☆25Updated 7 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 6 years ago
• auditNG / go-audit-container
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆16Updated 6 years ago
• daavelino / vulnerability-catalog
  A catalog designed for environments with multiple or diffuse Information Security vulnerability-related information sources.
  ☆12Updated last year
• jedisct1 / ipgrep
  Extract, defang, resolve names and IPs from text
  ☆23Updated last year
• kushaldas / unoon
  ☆33Updated 2 years ago
• migolovanov / modsecurity-checker
  Script to check ModSecurity rules agains some WAF
  ☆12Updated 6 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 6 years ago
• hardenedlinux / zeek2nix
  An operator which calls zeek to nix-ecosystem simply.
  ☆10Updated 2 years ago
• fabaff / fsl-test-bench
  FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching s…
  ☆29Updated 3 months ago
• w8mej / PoorOperationalSecurityPractices
  Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.
  ☆13Updated last year
• ekeih / kube-shodan
  Register your Kubernetes IPs to monitor.shodan.io
  ☆18Updated 2 years ago
• auditNG / auditNG
  ☆11Updated 7 years ago
• gjyoung1974 / policy-pipeline
  Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…
  ☆11Updated 4 years ago
• bakirtzisg / cybok-cli
  A vulnerability assessment tool for system models
  ☆13Updated 3 years ago
• claudijd / rotten_apple
  A tool for testing continuous integration (CI) or continuous delivery (CD) system security
  ☆23Updated 11 years ago
• ukncsc / stix-cvebuilder
  CVE Builder script that generates STIX formatted Exploit Target objects
  ☆18Updated 8 years ago
• barnumbirr / ares
  A python wrapper around https://cve.circl.lu.
  ☆55Updated 10 months ago
• da667 / Autosuricata
  first commit
  ☆20Updated last year
• appsecco / DevOpsSecurityChecklist
  ☆14Updated 7 years ago
• DinisCruz / veracode-api
  Repo to hold veracode related issues and code snippets
  ☆9Updated 7 years ago
• makash / linux-container-security-docs
  A gitbook for doing a null Bangalore session on linux container security to discuss and teach namespaces, cgroups etc.
  ☆20Updated 7 years ago
• darkbitio / tools
  Darkbit Cloud Security Tools
  ☆25Updated 4 years ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆21Updated 7 months ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated last year
• dustin-decker / threatseer
  efficient linux security monitoring
  ☆26Updated 6 years ago