product-security-group / Security_Ladders
Open source security career ladders
☆115Updated 2 years ago
Alternatives and similar repositories for Security_Ladders:
Users that are interested in Security_Ladders are comparing it to the libraries listed below
- Segment's Threat Modeling training for our engineers☆243Updated 3 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆73Updated 3 years ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆137Updated 3 years ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆62Updated 4 years ago
- ☆63Updated 2 years ago
- ☆32Updated 4 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 7 months ago
- A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systems☆56Updated last year
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆278Updated last week
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- This is a companion to the Security Engineer Questions☆201Updated last year
- ☆371Updated last year
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆152Updated last year
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆71Updated 5 months ago
- Remote Memory Acquisition Tool☆245Updated 4 years ago
- materials we hand out☆142Updated this week
- A Continuous Threat Modeling methodology☆314Updated 2 years ago
- IAMFinder enumerates and finds users and IAM roles in a target AWS account.☆111Updated 4 years ago
- Python installable command line utiltity for mitigation of host and key compromises.☆344Updated 3 years ago
- ☆23Updated last year
- Documentation on the Cyber Defense Matrix☆24Updated last year
- Security Monitoring Resolution Categories☆138Updated 3 years ago
- These are tools we released with our 2020 defcon/blackhat talk https://www.youtube.com/watch?v=Ml09R38jpok☆171Updated last month
- ☆36Updated last year
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 5 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆48Updated 8 years ago
- This script is used to generate some basic detections of the aws security services☆71Updated 3 years ago
- ☆124Updated last year
- ☆86Updated 3 years ago