iriusrisk/startleft external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

iriusrisk/startleft

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/iriusrisk/startleft)

Close

iriusrisk / startleftView on GitHubMore

• External links
• Readme badge

StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different sources such as IaC files, diagrams or projects exported from Threat Modelling tools.

☆54Mar 4, 2026Updated last month

Alternatives and similar repositories for startleft

Users that are interested in startleft are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• iriusrisk / OpenThreatModel

  View on GitHub
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆181Dec 11, 2025Updated 4 months ago
• rusakovichma / TicTaaC

  View on GitHub
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆72Jun 25, 2025Updated 10 months ago
• OWASP / www-project-threat-model-library

  View on GitHub
  OWASP Foundation web repository
  ☆36Apr 3, 2026Updated last month
• iriusrisk / IriusRisk-Central

  View on GitHub
  Provides content useful for IriusRisk threat modelling, including templates, API scripts, libraries and more.
  ☆16Apr 20, 2026Updated last week
• rusakovichma / aws-threat-modeling-tool-template

  View on GitHub
  Amazon Web Services (AWS) Microsoft Threat Modeling Tool Template
  ☆16Aug 19, 2021Updated 4 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• PatrickGallucci / threat-model-templates

  View on GitHub
  Templates for the Microsoft Threat Modeling Tool
  ☆178Updated this week
• OWASP / packman

  View on GitHub
  A documentation and tracking project with the goal of making package management systems more secure.
  ☆51Mar 5, 2021Updated 5 years ago
• luhring / example-container-image-supply-chain-security

  View on GitHub
  Example repository that demonstrates a supply chain security workflow using Syft, Grype, Cosign
  ☆12Sep 15, 2021Updated 4 years ago
• hyperledger-labs / SParts

  View on GitHub
  The Software Parts (SParts) lab delivers a Sawtooth-based ledger that provides both accountability and access to the open source componen…
  ☆12Feb 20, 2020Updated 6 years ago
• schutzwerk / tmte4pt

  View on GitHub
  Threat Modeling Tool Extension for Penetration Tester (TMTe4PT)
  ☆12Mar 2, 2022Updated 4 years ago
• CycloneDX / gh-python-generate-sbom

  View on GitHub
  GitHub action to generate a CycloneDX SBOM for Python
  ☆14Apr 23, 2026Updated last week
• edgeroute / security-champion-framework

  View on GitHub
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆110Jan 16, 2024Updated 2 years ago
• aws-solutions-library-samples / guidance-for-secure-access-to-external-package-repositories-on-aws

  View on GitHub
  This Guidance helps organizations provide their data scientists with external package repository access while maintaining information sec…
  ☆22Oct 20, 2024Updated last year
• simonec73 / threatsmanager

  View on GitHub
  Threats Manager Platform Core libraries and SDK
  ☆76Dec 22, 2025Updated 4 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• MaibornWolff / dd-import

  View on GitHub
  A utility to (re-)import findings and language data into DefectDojo
  ☆43Sep 26, 2024Updated last year
• OpenSecuritySummit / oss-website

  View on GitHub
  The Open Security Summit is focused on the collaboration between, Developers and Application Security
  ☆45Jul 9, 2025Updated 9 months ago
• OWASP / Maturity-Models

  View on GitHub
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆195Aug 27, 2018Updated 7 years ago
• amberzovitis / GraphKer

  View on GitHub
  Open Source Tool - Cybersecurity Graph Database in Neo4j
  ☆71Sep 8, 2023Updated 2 years ago
• OWASP / www-project-vulnerability-management-guide

  View on GitHub
  OWASP Foundation Web Respository
  ☆33Apr 17, 2026Updated 2 weeks ago
• PLOT4ai / plot4ai-library

  View on GitHub
  Practical Library Of Threats 4 Artificial Intelligence
  ☆36Jun 19, 2025Updated 10 months ago
• dehydr8 / elevation-of-privilege

  View on GitHub
  An online multiplayer version of the Elevation of Privilege (EoP) threat modeling card game
  ☆160Apr 22, 2026Updated last week
• nyph-infosec / daggerboard

  View on GitHub
  ☆102Sep 27, 2024Updated last year
• SBOM-Community / SBOM-Generation

  View on GitHub
  Reference GitHub Workflows for SBOM generation from the CISA SBOM Generation Reference Implementation Tiger Team
  ☆33Feb 2, 2026Updated 3 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• rpetrich / deciduous

  View on GitHub
  App that simplifies building decision trees to model adverse scenarios
  ☆230Jul 11, 2024Updated last year
• OWASP / OpenCRE

  View on GitHub
  ☆152Updated this week
• OWASP / www-project-llm-verification-standard

  View on GitHub
  Project LLM Verification Standard
  ☆56Oct 6, 2025Updated 6 months ago
• hupe1980 / cdk-threagile

  View on GitHub
  Agile Threat Modeling as Code
  ☆13Jun 30, 2022Updated 3 years ago
• cyberphone / openkeystore

  View on GitHub
  Library supporting secure keys, and crypto enabled JSON and CBOR
  ☆17Apr 17, 2026Updated 2 weeks ago
• OWASP / threat-dragon

  View on GitHub
  An open source threat modeling tool from OWASP
  ☆1,446Updated this week
• Keeper-Security / terraform-provider-secretsmanager

  View on GitHub
  Terraform Provider for Keeper Secrets Manager
  ☆14Apr 24, 2026Updated last week
• binbashar / terraform-aws-network-firewall

  View on GitHub
  Terraform module for creating AWS Network Firewall resources
  ☆10Oct 14, 2024Updated last year
• n3wt0n / AzurePipelinesDecoratorSamples

  View on GitHub
  A series of sample Decorators for Azure Pipelines (Build and Release), plus some more Advanced ones
  ☆21Jun 16, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• OpenChain-Project / Security-Assurance-Specification

  View on GitHub
  ☆24Nov 8, 2024Updated last year
• threatcl / threatcl

  View on GitHub
  Documenting your Threat Models with HCL
  ☆458Apr 12, 2026Updated 3 weeks ago
• Threagile / threagile

  View on GitHub
  Agile Threat Modeling Toolkit
  ☆759Apr 8, 2026Updated 3 weeks ago
• cloudposse / terraform-aws-firewall-manager

  View on GitHub
  Terraform module to configure AWS Firewall Manager
  ☆19Apr 22, 2026Updated last week
• lfai / security-and-compliance

  View on GitHub
  ☆16Updated this week
• interlynk-io / sbomasm

  View on GitHub
  sbomasm: The Complete SBOM Management Toolkit
  ☆113Apr 20, 2026Updated last week
• stucco-archive / ontology

  View on GitHub
  JSON schema representation of Stucco ontology
  ☆19Apr 14, 2016Updated 10 years ago