oracuk / oisru

Related projects ⓘ

Alternatives and complementary repositories for oisru

• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 2 months ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆62Updated 4 years ago
• secmerc / materialize-threats
  ☆61Updated last year
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆136Updated 3 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆134Updated 2 months ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆65Updated 5 months ago
• dropbox / vsmc
  Vendor Security Model Contract
  ☆97Updated 2 years ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 2 years ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆34Updated 4 months ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆36Updated 3 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆53Updated 10 months ago
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆79Updated 2 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆71Updated 3 years ago
• adamshostack / conflictmodeling
  A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systems
  ☆56Updated 10 months ago
• OWASP / www-project-threat-and-safeguard-matrix
  OWASP Foundation Web Respository
  ☆22Updated 11 months ago
• OWASP / www-project-cyber-defense-matrix
  Documentation on the Cyber Defense Matrix
  ☆24Updated last year
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆169Updated 8 months ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆41Updated 3 years ago
• panther-labs / tutorials
  Cloud security tutorials and best practices
  ☆38Updated last year
• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆52Updated last year
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆57Updated last year
• elastic / dorothy
  Dorothy is a tool to test security monitoring and detection for Okta environments
  ☆175Updated 3 months ago
• carlota / showmethemoney
  These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…
  ☆69Updated 2 weeks ago
• Algbra-Labs-OSS / Chronicle
  ☆66Updated 5 months ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆62Updated 5 years ago
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆46Updated 7 years ago
• ocsf / ocsf-docs
  OCSF Documentation
  ☆119Updated 2 weeks ago
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆238Updated 3 years ago
• jonrau1 / SyntheticSun
  SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, man…
  ☆76Updated 3 years ago
• trustoncloud / threatmodel-for-aws-s3
  ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆151Updated last year