oracuk / oisru
Repository for the Open Information Security Risk Universe
β63Updated 2 years ago
Related projects β
Alternatives and complementary repositories for oisru
- β61Updated last year
- ποΈ STRIDE vs. ASVS equivalence tableβ75Updated 2 months ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findingsβ136Updated 3 years ago
- Controls Assessment Specificationβ65Updated 5 months ago
- GCP CSPM using Google Sheetsβ34Updated 5 months ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.β62Updated 4 years ago
- A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systemsβ56Updated 10 months ago
- OWASP Foundation Web Respositoryβ22Updated last year
- Vendor Security Model Contractβ97Updated 2 years ago
- Convert cloudtrail data to MITRE ATT&CK Sightingsβ79Updated 2 years ago
- The SOCless automation frameworkβ134Updated 2 months ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.β62Updated 5 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.β53Updated 10 months ago
- This script is used to generate some basic detections of the aws security servicesβ71Updated 2 years ago
- SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, manβ¦β76Updated 3 years ago
- β82Updated 4 years ago
- β36Updated 3 years ago
- Updated incident response generator for training classesβ41Updated 3 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.β71Updated 3 years ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.β109Updated 4 years ago
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.β156Updated last year
- Systematic Universal Security Testing Orchestrationβ37Updated 2 years ago
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approachβ151Updated last year
- Remote Memory Acquisition Toolβ242Updated 4 years ago
- OWASP Foundation Threat Dragon Project Web Repositoryβ73Updated this week
- Documentation on the Cyber Defense Matrixβ24Updated last year
- Audit log wall of shame.β41Updated last month
- Threat Modeling Manifestoβ27Updated 4 months ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and thβ¦β69Updated last month