Alternatives and similar repositories for GitHub-Audit

Users that are interested in GitHub-Audit are comparing it to the libraries listed below

• WithSecureOpenSource / mittn
  Mittn: Security test tool runner for test automation in CI
  ☆197Updated last year
• leesoh / yams
  A collection of Ansible roles for automating infosec builds.
  ☆92Updated 7 years ago
• 18F / git-seekret
  Git module to prevent from committing sensitive information into the repository.
  ☆43Updated 6 years ago
• mozilla / minion
  Minion
  ☆355Updated 6 years ago
• nccgroup / G-Scout
  Google Cloud Platform Security Tool
  ☆235Updated 6 years ago
• spotify / comet
  Comet is an alert distribution framework which allows you to distribute alerts all the way to the resource owner with customizable owner …
  ☆59Updated 3 years ago
• dropbox / vsmc
  Vendor Security Model Contract
  ☆98Updated 3 years ago
• mozilla / Garmr
  INACTIVE - Security Testing Tool
  ☆107Updated 9 years ago
• mozilla-services / websec-check
  DEPRECATED - web security checklist for Firefox Services
  ☆77Updated 4 years ago
• ezekg / git-hound
  Git plugin that prevents sensitive data from being committed.
  ☆315Updated 5 years ago
• Netflix-Skunkworks / aws-metadata-proxy
  AWS Metadata Proxy for protection against SSRF
  ☆68Updated 5 years ago
• Miserlou / Mackenzie
  AWS Lambda Infection Toolkit // Persistent Lambda Malware PoC
  ☆159Updated 8 years ago
• aparsons / bag-of-holding
  An application to assist in the organization and prioritization of software security activities.
  ☆139Updated 4 years ago
• mpirnat / lets-be-bad-guys
  A deliberately-vulnerable website and exercises for teaching about the OWASP Top 10
  ☆188Updated last year
• dowjones / reapsaw
  Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …
  ☆41Updated 5 years ago
• Yelp / detect-secrets-server
  ☆107Updated 2 years ago
• duo-labs / secret-bridge
  Monitors Github for leaked secrets
  ☆203Updated last year
• lyft / bandit-high-entropy-string
  A high entropy string plugin for OpenStack's bandit project
  ☆48Updated 4 years ago
• paypal / scorebot
  ☆57Updated 5 years ago
• duo-labs / phinn
  A toolkit to generate an offline Chrome extension to detect phishing attacks using a bespoke convolutional neural network.
  ☆132Updated 8 years ago
• prezi / reddalert
  AWS risky security change detector based on EDDA.
  ☆82Updated 7 years ago
• mozilla / http-observatory-cli
  The command line tool for the HTTP Observatory
  ☆93Updated 2 years ago
• portcullislabs / co-ordinated-disclosure-toolkit
  Portcullis Computer Security Co-ordinated Disclosure Toolkit
  ☆24Updated 6 months ago
• trailofbits / audit-kubernetes
  k8s audit repo
  ☆229Updated 6 years ago
• mozilla / seasponge
  SeaSponge is an accessible threat modelling tool from Mozilla
  ☆279Updated 7 years ago
• chrisallenlane / drek
  A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a la…
  ☆141Updated last year
• uber-archive / focuson
  A tool to surface security issues in python code
  ☆226Updated 8 years ago
• jimmythompson / ent
  An attack tree generator built on electron
  ☆62Updated 9 years ago
• slackhq / goSDL
  goSDL
  ☆522Updated last month
• DinisCruz / Book_SecDevOps_Risk_Workflow
  Content for 'JIRA Risk Project' book published at LeanPub
  ☆57Updated 7 years ago