openappsec / waf-comparison-projectLinks
Testing datasets and tools to compare WAF efficacy
☆190Updated 9 months ago
Alternatives and similar repositories for waf-comparison-project
Users that are interested in waf-comparison-project are comparing it to the libraries listed below
Sorting:
- A full insecure kubernetes application for testing security tools☆91Updated 2 months ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆291Updated last year
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆177Updated last month
- Curating Falco rules with MITRE ATT&CK Matrix☆86Updated last year
- A curated list of resources about detecting threats and defending Kubernetes systems.☆401Updated 2 years ago
- CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…☆265Updated last month
- 🧰 Multi Tool Kubernetes Pentest Image☆251Updated 4 months ago
- DevSecOpsGuides☆192Updated 9 months ago
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆681Updated 3 months ago
- Halberd : Multi-Cloud Agentic Attack Tool☆328Updated 2 weeks ago
- Repo to hold wazuh manager mcp server☆69Updated 3 months ago
- ☆183Updated 8 months ago
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆474Updated 6 months ago
- OWASP Foundation Web Respository☆100Updated 2 weeks ago
- Gram is Klarna's own threat model diagramming tool☆330Updated 2 weeks ago
- Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…☆142Updated 2 years ago
- kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…☆57Updated 2 years ago
- ☆420Updated 2 years ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆214Updated this week
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆101Updated last year
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆210Updated this week
- Customized CVE FEED Notifier☆114Updated 8 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated last year
- Generate datasets of cloud audit logs for common attacks☆231Updated this week
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆82Updated last year
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆260Updated 6 months ago
- Lambda function that streamlines containment of an AWS account compromise☆345Updated 2 years ago
- Curated list of security tools☆66Updated last year
- cloudgrep is grep for cloud storage☆327Updated 10 months ago
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆78Updated 2 weeks ago