klarna-incubator / gramLinks
Gram is Klarna's own threat model diagramming tool
☆329Updated 2 weeks ago
Alternatives and similar repositories for gram
Users that are interested in gram are comparing it to the libraries listed below
Sorting:
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆214Updated this week
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆209Updated this week
- A full insecure kubernetes application for testing security tools☆91Updated last month
- Awesome secure by default libraries to help you eliminate bug classes!☆701Updated last week
- ☆193Updated 8 months ago
- Generate datasets of cloud audit logs for common attacks☆228Updated last year
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆156Updated last year
- One Conference 2024☆111Updated last year
- Cloud Commotion intends to cause chaos to simulate security incidents☆146Updated last year
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆46Updated last week
- ☆380Updated last year
- boostsecurityio/poutine☆347Updated 3 weeks ago
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆69Updated 3 weeks ago
- cloudgrep is grep for cloud storage☆327Updated 9 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆142Updated 11 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated last year
- This is a companion to the Security Engineer Questions☆205Updated 2 years ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆563Updated last month
- ☆168Updated 2 months ago
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆471Updated 6 months ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆172Updated 2 weeks ago
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Updated last year
- A tool to uncover undocumented APIs from the AWS Console.☆115Updated 7 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆114Updated last week
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆174Updated last year
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆178Updated last week
- FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).☆180Updated last year
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆176Updated 7 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆138Updated last year
- The security workflow engine!☆135Updated 3 weeks ago