Alternatives and similar repositories for threatmodeling-resources

Users that are interested in threatmodeling-resources are comparing it to the libraries listed below

• wurstbrot / security-pins
  Pin designs for security related items
  ☆37Updated last year
• Vulnetix / vulnetix
  Automate vulnerability triage which prioritizes remediation over discovery
  ☆19Updated last week
• dependency-check / Dependency-Check_Action
  Github action to run dependency check
  ☆81Updated 2 weeks ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆172Updated 7 months ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆147Updated 2 months ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 10 months ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆56Updated 2 weeks ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆71Updated 2 years ago
• IBM / sbom-utility
  This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility
  ☆60Updated 2 years ago
• ozontech / dtrack-audit
  OWASP Dependency Track API client for intergration into CI/CD pipeline
  ☆53Updated 10 months ago
• DependencyTrack / gh-upload-sbom
  Publishes BOMs to Dependency-Track from GitHub Actions
  ☆54Updated 8 months ago
• CloudWanderer-io / PolicyGlass
  PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…
  ☆59Updated 3 years ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆123Updated last year
• OWASP / threat-modeling-playbook
  ☆34Updated 3 years ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated last year
• secmerc / materialize-threats
  ☆65Updated 2 years ago
• eclipse-jbom / jbom
  ☆116Updated 2 months ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆230Updated 10 months ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 5 years ago
• OWASP / OpenCRE
  ☆112Updated last week
• zoom / viss
  ☆63Updated last year
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆77Updated last year
• TinderSec / oidc-scanner-aws
  ☆49Updated 2 years ago
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆108Updated last year
• OWASP / packman
  A documentation and tracking project with the goal of making package management systems more secure.
  ☆50Updated 4 years ago
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆114Updated 3 weeks ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆65Updated this week
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆250Updated 2 years ago
• Toreon / threat-model-playbook
  ☆88Updated 3 years ago
• AppSecure-nrw / security-belts
  ☆110Updated 11 months ago