Alternatives and similar repositories for threat-modeling

Users that are interested in threat-modeling are comparing it to the libraries listed below

• zmap / zcertificate
  Command line utility for parsing certificates
  ☆65Updated 4 years ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆23Updated last week
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 7 years ago
• blacktop / seccomp-gen
  Docker Secure Computing Profile Generator
  ☆49Updated 3 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• w8mej / Threat_Modeling_Bank
  A curated threat modeling library collection
  ☆22Updated last year
• Scribery / aushape
  A library and a tool for converting audit logs to XML and JSON
  ☆46Updated 7 years ago
• opendevsecops / lobby
  Welcome to OpenDevSecOps! Our mission is to deliver highly-resilient, readily-available and free defensive and offensive devops security …
  ☆21Updated 6 years ago
• runZeroInc / rumble-api
  Rumble Network Discovery API
  ☆17Updated last year
• redshiftzero / awesome-threat-modeling
  a curated list of useful threat modeling resources
  ☆139Updated last year
• barnumbirr / ares
  A python wrapper around https://cve.circl.lu.
  ☆55Updated 4 months ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• ukncsc / stix-cvebuilder
  CVE Builder script that generates STIX formatted Exploit Target objects
  ☆18Updated 9 years ago
• whereiskurt / tiogo
  A modern CLI for Tenable.io written in Go
  ☆14Updated 4 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆22Updated 7 years ago
• migolovanov / modsecurity-checker
  Script to check ModSecurity rules agains some WAF
  ☆12Updated 7 years ago
• firstlookmedia / dangerzone-converter
  dangerzone has moved to https://github.com/freedomofpress/dangerzone
  ☆40Updated 4 years ago
• netevert / delator
  Golang-based subdomain miner leveraging certificate transparency logs
  ☆76Updated 2 years ago
• zmap / zannotate
  Utility for annotating Internet datasets with contextual metadata (e.g., origin AS, MaxMind GeoIP2, reverse DNS, and WHOIS)
  ☆103Updated last week
• TKCERT / testssl.sh-masscan
  Make TLS/SSL security mass scans with testssl.sh and import results into ElasticSearch
  ☆110Updated 6 years ago
• assimilation / assimilation-official
  This is the official main repository for the Assimilation project
  ☆51Updated last year
• AbGuthrie / goquery
  Provide a shell like interface by utilizing osquery's distributed API
  ☆81Updated 5 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 7 years ago
• magoo / forecast-documentation
  Notes and reference for ongoing forecasting.
  ☆16Updated 3 years ago
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 3 years ago
• govau / certwatch
  ☆22Updated 7 years ago
• dutchcoders / ct
  Index all certificates from certificate transparancy into Elasticsearch
  ☆22Updated 7 years ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆44Updated last year