Alternatives and similar repositories for threat-modeling

Users that are interested in threat-modeling are comparing it to the libraries listed below

• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• zmap / zcertificate
  Command line utility for parsing certificates
  ☆64Updated 4 years ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆22Updated 11 months ago
• runZeroInc / rumble-api
  Rumble Network Discovery API
  ☆17Updated last year
• crtsh / crl_monitor
  Certificate Revocation List monitor
  ☆43Updated 11 months ago
• onetwopunch / security-scan
  Customizable Security Scanner written in Go
  ☆16Updated 9 years ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• jamesog / scan
  Import and display Masscan data
  ☆35Updated 3 months ago
• daavelino / vulnerability-catalog
  A catalog designed for environments with multiple or diffuse Information Security vulnerability-related information sources.
  ☆12Updated last year
• auditNG / go-audit-container
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆16Updated 6 years ago
• disclose / dnssecuritytxt
  A standard allowing organizations to nominate security contact points and policies via DNS TXT records.
  ☆31Updated last month
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• DefectDojo / Documentation
  DefectDojo Documentation
  ☆17Updated 3 years ago
• zmap / zannotate
  Utility for annotating Internet datasets with contextual metadata (e.g., origin AS, MaxMind GeoIP2, reverse DNS, and WHOIS)
  ☆100Updated last month
• w8mej / Threat_Modeling_Bank
  A curated threat modeling library collection
  ☆22Updated last year
• fnzv / OpenPortNotifier
  Simple tool to monitor network changes over time and trigger alerts
  ☆15Updated 5 years ago
• barnumbirr / ares
  A python wrapper around https://cve.circl.lu.
  ☆55Updated last month
• hmrc / security-git-hooks
  ☆19Updated last year
• pbnj / s3-fuzzer
  🔐 A concurrent, command-line AWS S3 Fuzzer. Written in Go.
  ☆45Updated 7 years ago
• vwt-digital / sec-helpers
  Collection of dynamic security related helpers
  ☆16Updated 2 years ago
• migolovanov / modsecurity-checker
  Script to check ModSecurity rules agains some WAF
  ☆12Updated 6 years ago
• GovReady / hyperGRC
  hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.
  ☆25Updated 3 years ago
• turbot / steampipe-plugin-shodan
  Use SQL to instantly query host, DNS and exploit information using Shodan. Open source CLI. No DB required.
  ☆28Updated last week
• magoo / forecast-documentation
  Notes and reference for ongoing forecasting.
  ☆16Updated 3 years ago
• gjyoung1974 / policy-pipeline
  Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…
  ☆11Updated 4 years ago
• CaliDog / tachikoma
  Tachikoma is a security alerting framework for human beings
  ☆22Updated 6 years ago
• OpenSecuritySummit / oss2018
  Open Security Summit 2018
  ☆29Updated 4 years ago