jeevan-singh / Security-Engineering-Training
β33Updated 3 years ago
Related projects β
Alternatives and complementary repositories for Security-Engineering-Training
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.β104Updated 10 months ago
- ποΈ STRIDE vs. ASVS equivalence tableβ75Updated 2 months ago
- Segment's Threat Modeling training for our engineersβ238Updated 3 years ago
- materials we hand outβ138Updated last month
- This is a companion to the Security Engineer Questionsβ200Updated 11 months ago
- β80Updated 3 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.β71Updated 3 years ago
- Some good resources for getting started with application securityβ135Updated 3 years ago
- β61Updated last year
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.β133Updated 4 years ago
- A small tool to help developers understand a huge set of security requirements from appsec teamsβ45Updated 2 years ago
- Semgrep rules corresponding to the OWASP ASVS standardβ27Updated 4 years ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestratβ¦β274Updated this week
- ποΈ A [work-in-progress] collection for interview questions for Information Security rolesβ136Updated last year
- β121Updated last year
- Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wikiβ203Updated 2 weeks ago
- Open source security career laddersβ113Updated last year
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulneβ¦β31Updated last year
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. β¦β55Updated 4 months ago
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.β156Updated last year
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.β62Updated 4 years ago
- β80Updated this week
- GCP GOAT is the vulnerable application for learn the GCP Securityβ62Updated last year
- The Pixi module is a MEAN Stack web app with wildly insecure APIs!β112Updated last year
- threatspec - continuous threat modeling, through codeβ332Updated 3 years ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)β30Updated last year
- AI featured threat modeling and security review actionβ40Updated this week
- Core model including reused documentationβ89Updated 2 months ago
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approachβ151Updated last year
- A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systemsβ56Updated 10 months ago