Alternatives and similar repositories for insider

Users that are interested in insider are comparing it to the libraries listed below

• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆149Updated 5 years ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆417Updated 11 months ago
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆852Updated 2 years ago
• ZupIT / horusec
  Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
  ☆1,276Updated this week
• c0rdis / security-champions-playbook
  Security Champions Playbook v 2.1
  ☆383Updated 2 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆486Updated 2 years ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆182Updated 6 years ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆368Updated 4 years ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆276Updated 2 years ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆227Updated last year
• OWASP / Docker-Security
  Getting a handle on container security
  ☆667Updated last year
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆706Updated last month
• semgrep / semgrep-rules
  Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.
  ☆1,006Updated this week
• OWASP / threat-model-cookbook
  This project is about creating and publishing threat model examples.
  ☆426Updated 3 years ago
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆269Updated 3 weeks ago
• SasanLabs / VulnerableApp
  OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
  ☆347Updated last month
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆268Updated 5 years ago
• OWASP / SecureCodingDojo
  The Secure Coding Dojo is a platform for delivering secure coding knowledge.
  ☆593Updated last month
• blabla1337 / skf-labs
  Repo for all the SKF Docker lab examples
  ☆458Updated last year
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆417Updated 2 years ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated last year
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆99Updated 2 weeks ago
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆326Updated 3 years ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆124Updated last year
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆187Updated last year
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 6 years ago
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆395Updated 3 years ago
• checkmarx-ts / CxUtils
  Useful tools and Examples made by Checkmarx Professional Services
  ☆39Updated last month
• owaspsamm / sammwise
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆77Updated 2 years ago
• OWASP / ASST
  OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.
  ☆178Updated 3 months ago