freedomofpress / threat-modelingLinks
experimental threat modeling tools
☆14Updated 2 years ago
Alternatives and similar repositories for threat-modeling
Users that are interested in threat-modeling are comparing it to the libraries listed below
Sorting:
- A Java library for programmatically calculating OWASP Risk Rating scores☆18Updated 2 years ago
- Command line utility for parsing certificates☆64Updated 4 years ago
- A low/zero interaction ssh authentication logging honeypot☆22Updated 11 months ago
- Rumble Network Discovery API☆17Updated last year
- Certificate Revocation List monitor☆43Updated 11 months ago
- Customizable Security Scanner written in Go☆16Updated 9 years ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆21Updated 2 years ago
- Import and display Masscan data☆35Updated 3 months ago
- A catalog designed for environments with multiple or diffuse Information Security vulnerability-related information sources.☆12Updated last year
- go-audit is an alternative to the auditd daemon that ships with many distros☆16Updated 6 years ago
- A standard allowing organizations to nominate security contact points and policies via DNS TXT records.☆31Updated last month
- D4 core software (server and sample sensor client)☆42Updated last year
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated last year
- Looks for GitHub org users without 2FA turned on☆9Updated 8 years ago
- NIST OSCAL SDK and CLI☆38Updated 5 years ago
- DefectDojo Documentation☆17Updated 3 years ago
- Utility for annotating Internet datasets with contextual metadata (e.g., origin AS, MaxMind GeoIP2, reverse DNS, and WHOIS)☆100Updated last month
- A curated threat modeling library collection☆22Updated last year
- Simple tool to monitor network changes over time and trigger alerts☆15Updated 5 years ago
- A python wrapper around https://cve.circl.lu.☆55Updated last month
- ☆19Updated last year
- 🔐 A concurrent, command-line AWS S3 Fuzzer. Written in Go.☆45Updated 7 years ago
- Collection of dynamic security related helpers☆16Updated 2 years ago
- Script to check ModSecurity rules agains some WAF☆12Updated 6 years ago
- hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.☆25Updated 3 years ago
- Use SQL to instantly query host, DNS and exploit information using Shodan. Open source CLI. No DB required.☆28Updated last week
- Notes and reference for ongoing forecasting.☆16Updated 3 years ago
- Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…☆11Updated 4 years ago
- Tachikoma is a security alerting framework for human beings☆22Updated 6 years ago
- Open Security Summit 2018☆29Updated 4 years ago