oracuk / oisru

Related projects ⓘ

Alternatives and complementary repositories for oisru

• secmerc / materialize-threats
  ☆61Updated last year
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 2 months ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆136Updated 3 years ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆65Updated 5 months ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆34Updated 5 months ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆62Updated 4 years ago
• adamshostack / conflictmodeling
  A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systems
  ☆56Updated 10 months ago
• OWASP / www-project-threat-and-safeguard-matrix
  OWASP Foundation Web Respository
  ☆22Updated last year
• dropbox / vsmc
  Vendor Security Model Contract
  ☆97Updated 2 years ago
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆79Updated 2 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆134Updated 2 months ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆62Updated 5 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆53Updated 10 months ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 2 years ago
• jonrau1 / SyntheticSun
  SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, man…
  ☆76Updated 3 years ago
• Netflix-Skunkworks / cloudtrail-anomaly
  ☆82Updated 4 years ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆36Updated 3 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆41Updated 3 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆71Updated 3 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆109Updated 4 years ago
• geoffrey-hill-tutamantic / rapid-threat-model-prototyping-docs
  This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.
  ☆156Updated last year
• BBVA / susto
  Systematic Universal Security Testing Orchestration
  ☆37Updated 2 years ago
• trustoncloud / threatmodel-for-aws-s3
  ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆151Updated last year
• ThreatResponse / margaritashotgun
  Remote Memory Acquisition Tool
  ☆242Updated 4 years ago
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆73Updated this week
• OWASP / www-project-cyber-defense-matrix
  Documentation on the Cyber Defense Matrix
  ☆24Updated last year
• shellcromancer / audit-log-wall-of-shame
  Audit log wall of shame.
  ☆41Updated last month
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆27Updated 4 months ago
• carlota / showmethemoney
  These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…
  ☆69Updated last month