Alternatives and similar repositories for threat-modeling

Users that are interested in threat-modeling are comparing it to the libraries listed below

• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• gjyoung1974 / policy-pipeline
  Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…
  ☆11Updated 4 years ago
• daavelino / vulnerability-catalog
  A catalog designed for environments with multiple or diffuse Information Security vulnerability-related information sources.
  ☆12Updated last year
• migolovanov / modsecurity-checker
  Script to check ModSecurity rules agains some WAF
  ☆12Updated 6 years ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• appsecco / owasp-threat-dragon-gitlab
  OWASP Threat Dragon with Gitlab Integration
  ☆26Updated 7 years ago
• kushaldas / unoon
  ☆33Updated 2 years ago
• w8mej / PoorOperationalSecurityPractices
  Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.
  ☆13Updated last year
• OpenSecuritySummit / oss2018
  Open Security Summit 2018
  ☆29Updated 4 years ago
• magoo / forecast-documentation
  Notes and reference for ongoing forecasting.
  ☆16Updated 3 years ago
• auditNG / go-audit-container
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆16Updated 6 years ago
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆21Updated 9 months ago
• philips-labs / blackduck-scanner-action
  BlackDuck GItHub Action
  ☆9Updated 2 years ago
• w8mej / Threat_Modeling_Bank
  A curated threat modeling library collection
  ☆22Updated last year
• fabaff / fsl-test-bench
  FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching s…
  ☆29Updated 5 months ago
• ukncsc / stix-cvebuilder
  CVE Builder script that generates STIX formatted Exploit Target objects
  ☆18Updated 8 years ago
• crtsh / crl_monitor
  Certificate Revocation List monitor
  ☆41Updated 9 months ago
• redhat-cip / restfuzz
  REST API test utility
  ☆22Updated 5 years ago
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 3 years ago
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 6 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• pbnj / s3-fuzzer
  🔐 A concurrent, command-line AWS S3 Fuzzer. Written in Go.
  ☆45Updated 7 years ago
• ossf / ossf-landscape
  ☆29Updated last week
• blacktop / seccomp-gen
  Docker Secure Computing Profile Generator
  ☆48Updated 3 years ago
• kost / docker-cowrie
  A Docker container for Cowrie - SSH honeypot based on kippo
  ☆10Updated 9 years ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• nl5887 / notebooks
  Notebook collection
  ☆10Updated 6 years ago
• devsecops / controlplane
  Your infrastructure is moving and so is your root of trust. This project helps to define a new control plane for locking down access and…
  ☆9Updated 8 years ago
• CIRCL / pbtc
  Passive Bitcoin Project
  ☆10Updated 9 years ago