openappsec / waf-comparison-projectLinks
Testing datasets and tools to compare WAF efficacy
☆192Updated 10 months ago
Alternatives and similar repositories for waf-comparison-project
Users that are interested in waf-comparison-project are comparing it to the libraries listed below
Sorting:
- Curating Falco rules with MITRE ATT&CK Matrix☆88Updated last year
- A full insecure kubernetes application for testing security tools☆90Updated 3 months ago
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆176Updated 2 months ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆293Updated last year
- Repo to hold wazuh manager mcp server☆74Updated 4 months ago
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆684Updated last month
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆196Updated 4 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆252Updated 5 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆215Updated this week
- CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…☆265Updated 2 months ago
- Curated list of security tools☆66Updated 2 years ago
- Halberd : Multi-Cloud Agentic Attack Tool☆334Updated 3 weeks ago
- A curated list of resources about detecting threats and defending Kubernetes systems.☆404Updated 2 years ago
- Gram is Klarna's own threat model diagramming tool☆328Updated 2 weeks ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆83Updated last year
- VMC: a Scalable, Open Source and Free Vulnerability Management Platform☆92Updated last year
- DevSecOpsGuides☆192Updated 10 months ago
- Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…☆142Updated 3 years ago
- YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection☆101Updated last month
- OWASP Foundation Web Respository☆101Updated last month
- ☆422Updated 3 years ago
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆81Updated last month
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆483Updated 7 months ago
- A list of cloud security tools and vendors.☆184Updated last year
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆196Updated last year
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆177Updated 9 months ago
- cloudgrep is grep for cloud storage☆326Updated 11 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆141Updated last year
- Bitor Scanning Software☆454Updated 3 months ago
- VulnRisk - Open Source Vulnerability Risk Assessment Platform☆138Updated 2 months ago