Alternatives and similar repositories for threat-modeling

Users that are interested in threat-modeling are comparing it to the libraries listed below

• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• migolovanov / modsecurity-checker
  Script to check ModSecurity rules agains some WAF
  ☆12Updated 6 years ago
• zmap / zcertificate
  Command line utility for parsing certificates
  ☆64Updated 4 years ago
• gjyoung1974 / policy-pipeline
  Policy Pipeline : place an SDLC around your compliance documentation with a pipeline that renders policy-as-code to human friendly format…
  ☆11Updated 4 years ago
• disclose / dnssecuritytxt
  A standard allowing organizations to nominate security contact points and policies via DNS TXT records.
  ☆31Updated 3 weeks ago
• hardenedlinux / zeek2nix
  An operator which calls zeek to nix-ecosystem simply.
  ☆10Updated 2 years ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• ComplianceAsCode / auditree-harvest
  The Auditree data gathering and reporting tool.
  ☆15Updated 10 months ago
• JustinAzoff / ssh-auth-logger
  A low/zero interaction ssh authentication logging honeypot
  ☆22Updated 10 months ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 6 years ago
• w8mej / PoorOperationalSecurityPractices
  Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.
  ☆13Updated last year
• CISOfy / privacy-guide
  Tips to protect your personal and company data
  ☆29Updated 5 years ago
• pranavmk98 / gDocsFS
  Linux filesystem with a Google Docs backend, built using FUSE
  ☆10Updated 5 years ago
• daavelino / vulnerability-catalog
  A catalog designed for environments with multiple or diffuse Information Security vulnerability-related information sources.
  ☆12Updated last year
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 7 years ago
• CISOfy / lynis-docker
  Docker details and examples for the Lynis project
  ☆27Updated 8 years ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• ekeih / kube-shodan
  Register your Kubernetes IPs to monitor.shodan.io
  ☆18Updated 2 years ago
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• jedisct1 / ipgrep
  Extract, defang, resolve names and IPs from text
  ☆23Updated last year
• wisespace-io / nettfiske
  Detect Phishing fetching Certificate Transparency Logs
  ☆20Updated 4 years ago
• w8mej / Threat_Modeling_Bank
  A curated threat modeling library collection
  ☆22Updated last year
• bitsofinfo / testssl.sh-processor
  Wrapper for concurrent batch processing of testssl.sh commands
  ☆13Updated 6 years ago
• crtsh / ocsp_monitor
  OCSP Responder monitor
  ☆37Updated 10 months ago
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 3 years ago
• fabaff / fsl-test-bench
  FSL Test bench - Ansible playbook repository to setup a save environment for security auditing and testing. It can be used for teaching s…
  ☆29Updated 7 months ago
• glassechidna / kms-host-key
  An easy way to give all your EC2 instances SSH host certificates
  ☆16Updated 2 years ago
• christophetd / abusing-cloudflare-workers
  Abusing Cloudflare Workers to establish persistence and exfiltrate sensitive data at the edge.
  ☆17Updated 2 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago