Alternatives and similar repositories for insider

Users that are interested in insider are comparing it to the libraries listed below

• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆845Updated last year
• ajinabraham / njsscan
  njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
  ☆406Updated 8 months ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆148Updated 4 years ago
• BBVA / apicheck
  The DevSecOps toolset for REST APIs
  ☆273Updated 2 years ago
• c0rdis / security-champions-playbook
  Security Champions Playbook v 2.1
  ☆375Updated last year
• imperva / automatic-api-attack-tool
  Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…
  ☆480Updated 2 years ago
• owaspsamm / sammwise
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆76Updated 2 years ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆362Updated 4 years ago
• softwaresecured / secure-code-review-checklist
  A starter secure code review checklist
  ☆182Updated 6 years ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆223Updated last year
• semgrep / semgrep-rules
  Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.
  ☆949Updated this week
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆183Updated last year
• OWASP / threat-model-cookbook
  This project is about creating and publishing threat model examples.
  ☆419Updated 3 years ago
• zaproxy / zap-hud
  The ZAP Heads Up Display (HUD)
  ☆265Updated 5 months ago
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆683Updated this week
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆323Updated 3 years ago
• OWASP / Docker-Security
  Getting a handle on container security
  ☆658Updated last year
• magnologan / awesome-sca
  A comprehensive list of software composition analysis tools.
  ☆151Updated last year
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆123Updated last year
• OWASP / RiskAssessmentFramework
  The Secure Coding Framework
  ☆266Updated 4 years ago
• secureCodeBox / secureCodeBox
  secureCodeBox (SCB) - continuous secure delivery out of the box
  ☆903Updated this week
• blabla1337 / skf-labs
  Repo for all the SKF Docker lab examples
  ☆455Updated 11 months ago
• SasanLabs / VulnerableApp
  OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
  ☆331Updated last week
• OWASP / glue
  Application Security Automation
  ☆527Updated last year
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆99Updated last week
• blabla1337 / skf-flask
  Security Knowledge Framework (SKF) Python Flask / Angular project
  ☆818Updated last year
• mgreiler / secure-code-review-checklist
  ☆189Updated 2 years ago
• OWASP / pytm
  A Pythonic framework for threat modeling
  ☆1,018Updated last month
• visma-prodsec / confused
  Tool to check for dependency confusion vulnerabilities in multiple package management systems
  ☆735Updated 11 months ago
• ICTU / zap2docker-auth-weekly
  Zap baseline scanner in Docker with authentication
  ☆103Updated last year