jonathanristo / VMMM-self-assessment-tool
A self assessment tool to help understand your level in the SANS Vulnerability Management Maturity Model (VMMM).
☆19Updated last year
Related projects ⓘ
Alternatives and complementary repositories for VMMM-self-assessment-tool
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆61Updated 6 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆57Updated last year
- ☆36Updated 6 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆82Updated 9 months ago
- Cloud Offensive Breach and Risk Assessment (COBRA) Tool☆74Updated 3 weeks ago
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆51Updated last year
- 🖇️ STRIDE vs. ASVS equivalence table☆75Updated 2 months ago
- Anvilogic Forge☆86Updated this week
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆115Updated 3 weeks ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆79Updated 2 years ago
- A guide to simplify the process of evaluating Datadog's Cloud SIEM security capabilities to detect AWS threats.☆17Updated last year
- Generate a matrix based on an inventory of InfoSec tools☆23Updated 4 months ago
- AWSATT&CK adds MITRE ATT&CK context and additional logging capabilities to Rhino Security Labs's open-source AWS exploitation framework, …☆45Updated 3 years ago
- OWASP Foundation Web Respository☆26Updated last year
- A POC to implement Detection-as-Code with Terraform and Sumo Logic.☆25Updated last year
- ☆67Updated 8 months ago
- ☆31Updated this week
- ☆37Updated 9 months ago
- Public repository of all things cloud security.☆32Updated last month
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆67Updated 6 months ago
- Generates runbooks for GuardDuty findings☆34Updated 4 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆61Updated this week
- A Secure Controls Framework (SCF) Power BI App☆16Updated this week
- Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.☆29Updated 3 weeks ago
- pocket guide for core detection engineering concepts☆27Updated last year
- ThreatModel for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based app…☆57Updated last year
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆151Updated last year
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆49Updated 2 years ago
- A tool that allows you to document and assess any security automation in your SOC☆41Updated last week
- Automating Security Detection Engineering, published by Packt☆47Updated 3 weeks ago