freedomofpress / threat-modeling

Related projects ⓘ

Alternatives and complementary repositories for threat-modeling

• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated last year
• daavelino / vulnerability-catalog
  A catalog designed for environments with multiple or diffuse Information Security vulnerability-related information sources.
  ☆12Updated last year
• disclose / dnssecuritytxt
  A standard allowing organizations to nominate security contact points and policies via DNS TXT records.
  ☆31Updated last year
• crtsh / ocsp_monitor
  OCSP Responder monitor
  ☆32Updated 3 months ago
• codeexpress / subdomainrecon
  A sub-domain reconnaissance written in golang
  ☆12Updated 6 years ago
• appsecco / owasp-threat-dragon-gitlab
  OWASP Threat Dragon with Gitlab Integration
  ☆24Updated 7 years ago
• bitsofinfo / testssl.sh-processor
  Wrapper for concurrent batch processing of testssl.sh commands
  ☆13Updated 5 years ago
• zmap / zcertificate
  Command line utility for parsing certificates
  ☆59Updated 3 years ago
• kondukto-io / semgrep-rules
  Custom semgrep rules registry
  ☆12Updated 2 years ago
• jamesog / scan
  Import and display Masscan data
  ☆34Updated 11 months ago
• DinisCruz / veracode-api
  Repo to hold veracode related issues and code snippets
  ☆9Updated 7 years ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆19Updated 3 months ago
• makash / linux-container-security-docs
  A gitbook for doing a null Bangalore session on linux container security to discuss and teach namespaces, cgroups etc.
  ☆20Updated 7 years ago
• giantswarm / coredns-warnlist-plugin
  CoreDNS plugin exposing Prometheus metrics for malicious or prohibited requests
  ☆11Updated 2 weeks ago
• ComplianceAsCode / auditree-harvest
  The Auditree data gathering and reporting tool.
  ☆13Updated 3 months ago
• GSA / fedramp-gov
  Fedramp.gov source code for site built on https://federalist.18f.gov/
  ☆3Updated this week
• CISOfy / privacy-guide
  Tips to protect your personal and company data
  ☆27Updated 4 years ago
• auditNG / go-audit-container
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆16Updated 6 years ago
• jedisct1 / ipgrep
  Extract, defang, resolve names and IPs from text
  ☆23Updated 10 months ago
• crtsh / crl_monitor
  Certificate Revocation List monitor
  ☆38Updated 3 months ago
• ThreatResponse / poor-webhook
  An example of a vulnerable slack bot that runs in AWS lambda.
  ☆19Updated 7 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆21Updated 2 weeks ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• wazuh / wazuh-bosh
  Wazuh - Release for Bosh.io
  ☆11Updated last year
• D4-project / architecture
  Architecture - design and implementation of the D4 project architecture
  ☆16Updated 3 years ago
• w8mej / Threat_Modeling_Bank
  A curated threat modeling library collection
  ☆21Updated 11 months ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 6 months ago
• moyix / wdepy
  Decryption utility for PGP Whole Disk Encryption
  ☆18Updated 3 years ago