hp271 / awesome-dev-first-security

Related projects ⓘ

Alternatives and complementary repositories for awesome-dev-first-security

• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆55Updated 4 months ago
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆21Updated last year
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 3 months ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆14Updated last year
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆36Updated 3 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• ramimac / breach-list-database
  A meta-database collecting resources that compile lists of breaches
  ☆18Updated 2 weeks ago
• appsecco / owasp-threat-dragon-gitlab
  OWASP Threat Dragon with Gitlab Integration
  ☆24Updated 7 years ago
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆120Updated 7 months ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 3 years ago
• OpenSecuritySummit / oss-website
  The Open Security Summit is focused on the collaboration between, Developers and Application Security
  ☆45Updated this week
• mtesauro / AppSecToolbox-tools
  Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly
  ☆12Updated 8 years ago
• aquasecurity / saas-api-samples
  Sample code snippets for consuming the CloudSploit API
  ☆13Updated last year
• Appliscale / cloud-security-audit
  A command line security audit tool for Amazon Web Services
  ☆80Updated 5 years ago
• OWASP / Application-Security-Curriculum
  ☆21Updated 3 years ago
• mayakacz / presentation-slides
  Slides from presentations I give!
  ☆20Updated 6 months ago
• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆87Updated 2 years ago
• tldrrun / tools.tldr.run
  A curated list of security tools for Hackers & Builders!
  ☆98Updated 4 months ago
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated last month
• darkbitio / tools
  Darkbit Cloud Security Tools
  ☆25Updated 4 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 2 years ago
• wurstbrot / security-pins
  Pin designs for security related items
  ☆37Updated 6 months ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated last year
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆21Updated 2 weeks ago