ochronasec / ochrona-cliLinks
A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
β52Updated 2 years ago
Alternatives and similar repositories for ochrona-cli
Users that are interested in ochrona-cli are comparing it to the libraries listed below
Sorting:
- β114Updated 2 years ago
- ποΈ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.β75Updated last year
- Dependency Combobulatorβ95Updated 2 years ago
- All-in-one tool for managing vulnerability reports from AppSec pipelinesβ108Updated 3 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raiderβ139Updated 4 years ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.β111Updated 5 years ago
- Static Token And Credential Scannerβ95Updated 2 years ago
- Secrets scanner that understands codeβ191Updated 2 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.β78Updated 3 years ago
- Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)β89Updated 3 years ago
- Offensive Terraform Websiteβ45Updated 5 years ago
- Global Security Database Toolsβ43Updated 2 years ago
- β69Updated 5 months ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target containerβ106Updated 7 years ago
- sgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.β81Updated 4 years ago
- Tool for obfuscating and deobfuscating data.β75Updated last year
- Protect against subdomain takeoverβ95Updated 5 months ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.β77Updated 4 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. β¦β68Updated 6 months ago
- GHAST (GitHub Actions Static Analysis Tool) is a tool to analyze the security posture of your GitHub Actions and its surrounding environmβ¦β21Updated 2 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.β56Updated 3 years ago
- Tool to guess CPE name based on common software nameβ109Updated 3 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teamsβ47Updated 3 years ago
- π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.β42Updated last year
- Serverless honeytoken π΅π»ββοΈβ81Updated 3 years ago
- Lightspin AWS IAM Vulnerability Scannerβ94Updated 4 years ago
- An LLM and OCR based Indicator of Compromise Extraction Toolβ38Updated last year
- InfoSec OpenAI Examplesβ19Updated 2 years ago
- β10Updated 3 years ago
- Static security checker for Dockerfilesβ95Updated last year