oracuk / oisruLinks
Repository for the Open Information Security Risk Universe
☆64Updated 3 years ago
Alternatives and similar repositories for oisru
Users that are interested in oisru are comparing it to the libraries listed below
Sorting:
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆138Updated 4 years ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆63Updated 5 years ago
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.☆162Updated 2 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 11 months ago
- Vendor Security Model Contract☆98Updated 3 years ago
- ☆66Updated 2 weeks ago
- Segment's Threat Modeling training for our engineers☆245Updated 4 years ago
- The SOCless automation framework☆140Updated 5 months ago
- A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systems☆56Updated last month
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆282Updated last month
- Dorothy is a tool to test security monitoring and detection for Okta environments☆184Updated 11 months ago
- OWASP Foundation Threat Dragon Project Web Repository☆82Updated this week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆174Updated 8 months ago
- threatspec - continuous threat modeling, through code☆362Updated 4 years ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆189Updated 11 months ago
- ☆35Updated 4 years ago
- Controls Assessment Specification☆70Updated 4 months ago
- OCSF Documentation☆137Updated last month
- Open source security career ladders☆116Updated 2 years ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆181Updated 6 years ago
- Stakeholder-Specific Vulnerability Categorization☆156Updated this week
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆75Updated 4 years ago
- Repo to hold mapping of user-security-stories☆119Updated 6 years ago
- A Continuous Threat Modeling methodology☆323Updated 3 years ago
- Documentation on the Cyber Defense Matrix☆24Updated 2 years ago
- ☆373Updated last year
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year
- Convert cloudtrail data to MITRE ATT&CK Sightings☆80Updated 3 years ago
- This script is used to generate some basic detections of the aws security services☆71Updated 3 years ago
- Graph-based security analysis for everyone☆348Updated last year