Alternatives and similar repositories for DevSkim

Users that are interested in DevSkim are comparing it to the libraries listed below

• microsoft / binskim
  A binary static analysis tool that provides security and correctness results for Windows Portable Executable and *nix ELF binary formats
  ☆820Updated last week
• microsoft / component-detection
  Scans your project to determine what components you use
  ☆501Updated last week
• microsoft / ApplicationInspector
  A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' qu…
  ☆4,360Updated last week
• security-code-scan / security-code-scan
  Vulnerability Patterns Detector for C# and VB.NET
  ☆964Updated last year
• microsoft / rest-api-fuzz-testing
  REST API Fuzz Testing (RAFT): Source code for self-hosted service developed for Azure, including the API, orchestration engine, and defau…
  ☆264Updated 3 years ago
• microsoft / sbom-tool
  The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.
  ☆1,886Updated this week
• microsoft / sarif-sdk
  .NET code and supporting files for working with the 'Static Analysis Results Interchange Format' (SARIF, see https://github.com/oasis-tcs…
  ☆205Updated 2 weeks ago
• pumasecurity / puma-scan
  Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams wr…
  ☆451Updated 2 years ago
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆395Updated 3 years ago
• sonatype-nexus-community / DevAudit
  Open-source, cross-platform, multi-purpose security auditing tool
  ☆361Updated 2 years ago
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆325Updated 3 years ago
• CycloneDX / cyclonedx-dotnet
  Creates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
  ☆237Updated last week
• microsoft / OSSGadget
  Collection of tools for analyzing open source packages.
  ☆348Updated 2 weeks ago
• blabla1337 / skf-flask
  Security Knowledge Framework (SKF) Python Flask / Angular project
  ☆822Updated last year
• mike-goodwin / owasp-threat-dragon
  An open source, online threat modelling tool from OWASP
  ☆486Updated last month
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆366Updated 4 years ago
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆425Updated this week
• ossf / wg-security-tooling
  OpenSSF Security Tooling Working Group
  ☆315Updated 2 months ago
• OWASP / pytm
  A Pythonic framework for threat modeling
  ☆1,034Updated 3 weeks ago
• CycloneDX / cyclonedx-node-module
  creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
  ☆134Updated last week
• microsoft / threat-modeling-templates
  Microsoft Threat Modeling Template files
  ☆194Updated 2 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆149Updated 5 months ago
• OWASP / WebGoat.NET
  OWASP WebGoat.NET
  ☆71Updated 10 years ago
• CycloneDX / cyclonedx-cli
  CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
  ☆403Updated last week
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆693Updated 2 weeks ago
• CycloneDX / cdxgen
  Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…
  ☆785Updated this week
• OWASP / SafeNuGet
  MsBuild task to warn about insecure NuGet libraries
  ☆97Updated 5 years ago
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆323Updated last year
• adamshostack / eop
  The Elevation of Privilege Threat Modeling Game
  ☆337Updated last year
• simonec73 / threatsmanager
  Threats Manager Platform Core libraries and SDK
  ☆75Updated 5 months ago