Alternatives and similar repositories for insider

Users that are interested in insider are comparing it to the libraries listed below

• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆854Updated 2 years ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆149Updated 5 years ago
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆417Updated last year
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆183Updated 6 years ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆277Updated 2 years ago
• c0rdis / security-champions-playbook
  Security Champions Playbook v 2.1
  ☆383Updated 2 years ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆370Updated 4 years ago
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆487Updated 2 years ago
• OWASP / Docker-Security
  Getting a handle on container security
  ☆669Updated last year
• OWASP / threat-model-cookbook
  This project is about creating and publishing threat model examples.
  ☆427Updated 4 years ago
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆190Updated last year
• SasanLabs / VulnerableApp
  OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
  ☆351Updated 2 months ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆227Updated last year
• OWASP / DVSA
  a Damn Vulnerable Serverless Application
  ☆544Updated 2 years ago
• blabla1337 / skf-labs
  Repo for all the SKF Docker lab examples
  ☆459Updated last year
• owaspsamm / sammwise
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆77Updated 2 years ago
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆271Updated 3 weeks ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆124Updated 2 years ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated last year
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆327Updated 3 years ago
• semgrep / semgrep-rules
  Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.
  ☆1,019Updated this week
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆711Updated this week
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆270Updated 5 years ago
• OWASP / glue
  Application Security Automation
  ☆528Updated 2 years ago
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆396Updated 3 years ago
• secureCodeBox / secureCodeBox
  secureCodeBox (SCB) - continuous secure delivery out of the box
  ☆921Updated this week
• righettod / poc-graphql
  Research on GraphQL from an AppSec point of view.
  ☆416Updated 2 years ago
• OWASP / SecureCodingDojo
  The Secure Coding Dojo is a platform for delivering secure coding knowledge.
  ☆595Updated 2 months ago
• mgreiler / secure-code-review-checklist
  ☆192Updated 2 years ago
• magnologan / awesome-sca
  A comprehensive list of software composition analysis tools.
  ☆156Updated last month