Alternatives and similar repositories for awesome-dev-first-security:

Users that are interested in awesome-dev-first-security are comparing it to the libraries listed below

• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆61Updated 9 months ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆35Updated 3 years ago
• lightspin-tech / red-bucket-gcp
  ☆10Updated 2 years ago
• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆124Updated 11 months ago
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆43Updated last year
• dowjones / reapsaw
  Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …
  ☆41Updated 4 years ago
• tldrrun / tools.tldr.run
  A curated list of security tools for Hackers & Builders!
  ☆98Updated 8 months ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated last year
• elastisys / security-review
  ☆16Updated 2 years ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆45Updated 2 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 5 years ago
• owaspsamm / dashboard-webapp
  ☆21Updated 3 years ago
• mayakacz / presentation-slides
  Slides from presentations I give!
  ☆23Updated 3 months ago
• appsecco / owasp-threat-dragon-gitlab
  OWASP Threat Dragon with Gitlab Integration
  ☆25Updated 7 years ago
• mtesauro / AppSecToolbox-tools
  Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly
  ☆12Updated 8 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆73Updated 3 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 7 months ago
• twilio-labs / gordon
  Gordon is status check Github app to enforce and validate about.yaml file specifications in a repository during pull requests to drive co…
  ☆20Updated last month
• coffeewithayman / awesome-aws-security
  A carefully curated list of open source projects aimed at improving your AWS security posture!
  ☆30Updated 3 years ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 3 years ago
• paypal / scorebot
  ☆57Updated 4 years ago
• OWASP / kstg
  Kubernetes Security Testing Guide
  ☆26Updated 11 months ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆138Updated 3 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated last week
• vikrum / SecurityChecklists
  The SaaS CTO Security Checklist Redux, The DevOps Security Checklist, and The Personal Infosec & Security Checklist
  ☆23Updated 3 years ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆55Updated 3 weeks ago