otto-de / threatmodeling-resourcesLinks
☆14Updated 4 years ago
Alternatives and similar repositories for threatmodeling-resources
Users that are interested in threatmodeling-resources are comparing it to the libraries listed below
Sorting:
- Pin designs for security related items☆37Updated last year
- Automate vulnerability triage which prioritizes remediation over discovery☆18Updated this week
- Discover vulnerabilities and container image misconfiguration in production environments.☆56Updated last week
- Github action to run dependency check☆80Updated 10 months ago
- Publishes BOMs to Dependency-Track from GitHub Actions☆54Updated 8 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆172Updated 6 months ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 9 months ago
- Enrich SBOMs with data from third party services☆175Updated 2 months ago
- ☆108Updated last week
- 🥋 Framework for continuously improving the IT-Security of your teams through gamification and self-assessment.☆82Updated 2 years ago
- Privacy Cards for Software Developers☆52Updated 6 years ago
- OWASP Dependency Track API client for intergration into CI/CD pipeline☆53Updated 10 months ago
- Agile Threat Modeling as Code☆13Updated 2 years ago
- Generate a score for your sbom to understand if it will actually be useful.☆229Updated 9 months ago
- Security-focused tool that scans multiple AWS services for exposed secrets and sensitive data using regex-based detection☆10Updated 5 months ago
- OWASP Foundation Web Respository☆94Updated 4 months ago
- A documentation and tracking project with the goal of making package management systems more secure.☆50Updated 4 years ago
- SBOM Search - Context aware search in SBOM repositories☆26Updated this week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆60Updated 2 years ago
- Log4Shell CVE-2021-44228 mitigation tester☆16Updated 3 years ago
- UI für verschiedene Reifegrad-Dimensionen☆31Updated 2 years ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆59Updated 3 years ago
- Github action for linting AWS IAM policy documents☆38Updated 2 years ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 11 months ago
- KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.☆101Updated last year
- Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts☆61Updated 2 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆108Updated last year
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆65Updated 11 months ago
- InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark☆78Updated 5 months ago
- Evaluate source control (GitHub) security posture☆250Updated 2 years ago