hp271 / awesome-dev-first-securityLinks
A curated collection of tools and resources for building security with a developer first approach.
☆28Updated 2 years ago
Alternatives and similar repositories for awesome-dev-first-security
Users that are interested in awesome-dev-first-security are comparing it to the libraries listed below
Sorting:
- ☆35Updated 4 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆65Updated 11 months ago
- ☆10Updated 3 years ago
- Clean accounts over permissions in GCP infra at scale☆71Updated 2 years ago
- ☆20Updated 6 years ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆21Updated 2 years ago
- A project to visualize the software supply chain☆52Updated last year
- Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly☆12Updated 8 years ago
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated last year
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆53Updated last year
- A small library to alter AWS API requests; Used for fuzzing research☆22Updated last year
- A curated list of security tools for Hackers & Builders!☆99Updated 10 months ago
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 3 years ago
- A Java library for programmatically calculating OWASP Risk Rating scores☆18Updated 2 years ago
- A tool for testing continuous integration (CI) or continuous delivery (CD) system security☆23Updated 12 years ago
- ZAP Management Scripts☆23Updated 2 weeks ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 9 months ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆28Updated 3 months ago
- Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…☆124Updated last year
- A meta-database collecting resources that compile lists of breaches☆20Updated 7 months ago
- Maturity Model Collaborative project☆15Updated 2 years ago
- The SaaS CTO Security Checklist Redux, The DevOps Security Checklist, and The Personal Infosec & Security Checklist☆25Updated 3 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆74Updated 3 years ago
- ☆63Updated 2 years ago
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated 5 months ago
- Darkbit Cloud Security Tools☆25Updated 4 years ago
- ATHI — An AI Threat Modeling Framework for Policymakers☆51Updated last year
- Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)☆88Updated 2 years ago
- OWASP Threat Dragon with Gitlab Integration☆27Updated 7 years ago
- DefectDojo Community Content☆18Updated 7 months ago