Alternatives and similar repositories for threat-modeling

Users that are interested in threat-modeling are comparing it to the libraries listed below

• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• blacktop / seccomp-gen
  Docker Secure Computing Profile Generator
  ☆48Updated 3 years ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• w8mej / PoorOperationalSecurityPractices
  Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.
  ☆13Updated last year
• auditNG / go-audit-container
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆16Updated 6 years ago
• hardenedlinux / zeek2nix
  An operator which calls zeek to nix-ecosystem simply.
  ☆10Updated 2 years ago
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 3 years ago
• disclose / dnssecuritytxt
  A standard allowing organizations to nominate security contact points and policies via DNS TXT records.
  ☆31Updated 3 months ago
• wisespace-io / nettfiske
  Detect Phishing fetching Certificate Transparency Logs
  ☆20Updated 4 years ago
• fabaff / fsl-test-bench
  FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching s…
  ☆29Updated 6 months ago
• fnzv / OpenPortNotifier
  Simple tool to monitor network changes over time and trigger alerts
  ☆15Updated 5 years ago
• kushaldas / unoon
  ☆33Updated 2 years ago
• jrcarreiro / pwnedless
  Script for applied security baseline controls in RedHat/CentOS.
  ☆12Updated 8 years ago
• appsecco / owasp-threat-dragon-gitlab
  OWASP Threat Dragon with Gitlab Integration
  ☆27Updated 7 years ago
• magoo / forecast-documentation
  Notes and reference for ongoing forecasting.
  ☆16Updated 3 years ago
• whereiskurt / tiogo
  A modern CLI for Tenable.io written in Go
  ☆14Updated 4 years ago
• glassechidna / kms-host-key
  An easy way to give all your EC2 instances SSH host certificates
  ☆16Updated 2 years ago
• gjyoung1974 / policy-pipeline
  Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…
  ☆11Updated 4 years ago
• jedisct1 / ipgrep
  Extract, defang, resolve names and IPs from text
  ☆23Updated last year
• w8mej / Threat_Modeling_Bank
  A curated threat modeling library collection
  ☆22Updated last year
• migolovanov / modsecurity-checker
  Script to check ModSecurity rules agains some WAF
  ☆12Updated 6 years ago
• phishdetect / phishdetect-extension
  Browser extension that complements the PhishDetect service
  ☆24Updated 2 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• daavelino / vulnerability-catalog
  A catalog designed for environments with multiple or diffuse Information Security vulnerability-related information sources.
  ☆12Updated last year
• ekeih / kube-shodan
  Register your Kubernetes IPs to monitor.shodan.io
  ☆18Updated 2 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 8 years ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆22Updated 10 months ago
• zmap / zcertificate
  Command line utility for parsing certificates
  ☆63Updated 4 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year