mario-platt / ASVS-Agile-Delivery-Guide
β36Updated 3 years ago
Related projects: β
- ποΈ STRIDE vs. ASVS equivalence tableβ74Updated 3 weeks ago
- β60Updated last year
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. β¦β54Updated 2 months ago
- Systematic Universal Security Testing Orchestrationβ37Updated 2 years ago
- Threat Modeling Manifestoβ24Updated 2 months ago
- β13Updated last year
- β35Updated 5 months ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulneβ¦β31Updated last year
- β18Updated 2 years ago
- IriusRisk Communityβ62Updated last year
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.β15Updated 3 years ago
- β57Updated 4 years ago
- Semgrep rules corresponding to the OWASP ASVS standardβ27Updated 3 years ago
- All-in-one tool for managing vulnerability reports from AppSec pipelinesβ105Updated last year
- β20Updated 5 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.β69Updated 3 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.β46Updated 7 years ago
- GCP GOAT is the vulnerable application for learn the GCP Securityβ61Updated 11 months ago
- AppSecPipeline Specification for DevOps automation.β38Updated last year
- InfoSec OpenAI Examplesβ19Updated 9 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teamsβ39Updated 2 years ago
- β78Updated 3 years ago
- β28Updated 2 years ago
- Updated incident response generator for training classesβ41Updated 3 years ago
- Repository for the Open Information Security Risk Universeβ63Updated 2 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.β132Updated 4 years ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)β30Updated last year
- Tools for AWS forensicsβ64Updated 8 years ago
- Python API library for DefectDojoβ40Updated last year
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.β74Updated 2 years ago