Alternatives and similar repositories for awesome-dev-first-security:

Users that are interested in awesome-dev-first-security are comparing it to the libraries listed below

• gojek / CureIAM
  Clean accounts over permissions in GCP infra at scale
  ☆71Updated last year
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆35Updated 3 years ago
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆124Updated last year
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆62Updated 9 months ago
• lightspin-tech / red-bucket-gcp
  ☆10Updated 2 years ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 3 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆73Updated 3 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 7 months ago
• tldrrun / tools.tldr.run
  A curated list of security tools for Hackers & Builders!
  ☆99Updated 8 months ago
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆45Updated last year
• coffeewithayman / awesome-aws-security
  A carefully curated list of open source projects aimed at improving your AWS security posture!
  ☆30Updated 3 years ago
• secmerc / materialize-threats
  ☆63Updated 2 years ago
• ComplianceAsCode / auditree-harvest
  The Auditree data gathering and reporting tool.
  ☆13Updated 7 months ago
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆48Updated 8 years ago
• mal-lang / exampleLang
  A MAL language that demonstrates the Maven project structure
  ☆23Updated 3 years ago
• omaidf / PrismX
  Cloud Security Dashboard for AWS - based on ScoutSuite
  ☆1Updated last year
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 5 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆139Updated 2 months ago
• mayakacz / presentation-slides
  Slides from presentations I give!
  ☆24Updated last week
• elastisys / security-review
  ☆16Updated 2 years ago
• ncc-erik-steringer / Aerides
  An implementation of infrastructure-as-code scanning using dynamic tooling.
  ☆56Updated 3 years ago
• owaspsamm / dashboard-webapp
  ☆21Updated 3 years ago
• disesdi / mlsecops_references
  ☆21Updated last year
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated last month
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆55Updated last year
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆35Updated last week
• Appliscale / cloud-security-audit
  A command line security audit tool for Amazon Web Services
  ☆81Updated 6 years ago
• praetorian-inc / snowcat
  a tool to audit the istio service mesh
  ☆173Updated 3 years ago
• Frichetten / aws_api_shapeshifter
  A small library to alter AWS API requests; Used for fuzzing research
  ☆22Updated last year