StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different sources such as IaC files, diagrams or projects exported from Threat Modelling tools.
☆54Mar 4, 2026Updated 2 months ago
Alternatives and similar repositories for startleft
Users that are interested in startleft are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆181Dec 11, 2025Updated 5 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆72Jun 25, 2025Updated 10 months ago
- OWASP Foundation web repository☆42Updated this week
- Provides content useful for IriusRisk threat modelling, including templates, API scripts, libraries and more.☆16Apr 20, 2026Updated last month
- Templates for the Microsoft Threat Modeling Tool☆180May 7, 2026Updated 2 weeks ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A documentation and tracking project with the goal of making package management systems more secure.☆52Mar 5, 2021Updated 5 years ago
- Example repository that demonstrates a supply chain security workflow using Syft, Grype, Cosign☆12Sep 15, 2021Updated 4 years ago
- The Software Parts (SParts) lab delivers a Sawtooth-based ledger that provides both accountability and access to the open source componen…☆12Feb 20, 2020Updated 6 years ago
- A Continuous Threat Modeling methodology☆327Jun 24, 2022Updated 3 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Jan 16, 2024Updated 2 years ago
- A monitoring hub that watches popular open-source repositories and uses AI to detect when commits are patching security vulnerabilities -…☆132Updated this week
- DevOps for Serverless Applications, published by Packt☆12Jan 18, 2023Updated 3 years ago
- Open Source Tool - Cybersecurity Graph Database in Neo4j☆72Sep 8, 2023Updated 2 years ago
- ☆20May 15, 2018Updated 8 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- OWASP Foundation Web Respository☆33Apr 17, 2026Updated last month
- Practical Library Of Threats 4 Artificial Intelligence☆38Jun 19, 2025Updated 11 months ago
- An online multiplayer version of the Elevation of Privilege (EoP) threat modeling card game☆161Apr 22, 2026Updated last month
- ☆102Sep 27, 2024Updated last year
- Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team☆34Feb 2, 2026Updated 3 months ago
- A gitleaks config that has most of Microsoft's deprecated credscan rules ported to it.☆13Apr 3, 2022Updated 4 years ago
- ☆155May 15, 2026Updated last week
- App that simplifies building decision trees to model adverse scenarios☆230Jul 11, 2024Updated last year
- Analysis of the Enterprise SAST/DAST product landscape☆38Feb 28, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Terraform module to configure AWS Firewall Manager☆19Apr 22, 2026Updated last month
- OWASP LLM Security Verification Standard☆56May 11, 2026Updated last week
- Agile Threat Modeling as Code☆13Jun 30, 2022Updated 3 years ago
- Library supporting secure keys, and crypto enabled JSON and CBOR☆17Apr 17, 2026Updated last month
- An open source threat modeling tool from OWASP☆1,465Updated this week
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆48May 11, 2026Updated last week
- A series of sample Decorators for Azure Pipelines (Build and Release), plus some more Advanced ones☆21Jun 16, 2022Updated 3 years ago
- ☆24Nov 8, 2024Updated last year
- Documenting your Threat Models with HCL☆458May 16, 2026Updated last week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Agile Threat Modeling Toolkit☆763Apr 8, 2026Updated last month
- lab files for LA serverless application labs☆12Feb 26, 2020Updated 6 years ago
- threatspec - continuous threat modeling, through code☆384Dec 30, 2020Updated 5 years ago
- ☆17Updated this week
- sbomasm: The Complete SBOM Management Toolkit☆118Updated this week
- JSON schema representation of Stucco ontology☆19Apr 14, 2016Updated 10 years ago
- Z Camera E2 firmware reverse-engineering results.☆17Oct 8, 2023Updated 2 years ago