openappsec / waf-comparison-projectLinks
Testing datasets and tools to compare WAF efficacy
☆182Updated 4 months ago
Alternatives and similar repositories for waf-comparison-project
Users that are interested in waf-comparison-project are comparing it to the libraries listed below
Sorting:
- MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.☆174Updated this week
- A full insecure kubernetes application for testing security tools☆89Updated 2 months ago
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆285Updated 10 months ago
- DevSecOpsGuides☆188Updated 3 months ago
- cloudgrep is grep for cloud storage☆326Updated 4 months ago
- OWASP Foundation Web Respository☆97Updated 5 months ago
- Halberd : Multi-Cloud Agentic Attack Tool☆296Updated this week
- Curating Falco rules with MITRE ATT&CK Matrix☆82Updated last year
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆68Updated last year
- A curated list of resources about detecting threats and defending Kubernetes systems.☆385Updated last year
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆142Updated 6 months ago
- This repo contains IOC, malware and malware analysis associated with Public cloud☆249Updated 8 months ago
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆239Updated last week
- Gram is Klarna's own threat model diagramming tool☆322Updated this week
- ☆262Updated 7 months ago
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆654Updated 3 months ago
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆435Updated last month
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆208Updated this week
- Add a layer of active defense to your cloud applications.☆93Updated this week
- Cloud Offensive Breach and Risk Assessment (COBRA) Tool☆92Updated last month
- ☆416Updated 2 years ago
- APIsec|SCAN - Free API security testing using Github actions☆100Updated last year
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆189Updated 10 months ago
- Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…☆144Updated 2 years ago
- 💀 Don't fear the Reaper 👻☆555Updated this week
- This is a collection of threat detection rules / rules engines that I have come across.☆291Updated last year
- Curated list of security tools☆66Updated last year
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆220Updated last month
- 🧰 Multi Tool Kubernetes Pentest Image☆240Updated 3 months ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆100Updated last year