klarna-incubator / gramLinks
Gram is Klarna's own threat model diagramming tool
☆327Updated last month
Alternatives and similar repositories for gram
Users that are interested in gram are comparing it to the libraries listed below
Sorting:
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆212Updated this week
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆155Updated 11 months ago
- A full insecure kubernetes application for testing security tools☆89Updated 2 weeks ago
- Generate datasets of cloud audit logs for common attacks☆222Updated last year
- Cloud Commotion intends to cause chaos to simulate security incidents☆146Updated last year
- ☆192Updated 6 months ago
- One Conference 2024☆110Updated last year
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆64Updated this week
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆171Updated this week
- Awesome secure by default libraries to help you eliminate bug classes!☆700Updated 6 months ago
- cloudgrep is grep for cloud storage☆325Updated 8 months ago
- boostsecurityio/poutine☆342Updated last week
- ☆378Updated last year
- This is a companion to the Security Engineer Questions☆207Updated last year
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆46Updated last month
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆142Updated 10 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated 11 months ago
- ☆166Updated last month
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆79Updated last year
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆167Updated last week
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆174Updated 6 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆177Updated 11 months ago
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆468Updated 4 months ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆170Updated last year
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆97Updated 3 weeks ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆554Updated last week
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated 2 years ago
- Halberd : Multi-Cloud Agentic Attack Tool☆319Updated 2 months ago
- FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).☆179Updated last year
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆285Updated last year