rpetrich / deciduous
App that simplifies building decision trees to model adverse scenarios
☆203Updated 8 months ago
Alternatives and similar repositories for deciduous:
Users that are interested in deciduous are comparing it to the libraries listed below
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆171Updated 4 months ago
- Segment's Threat Modeling training for our engineers☆242Updated 3 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 7 months ago
- Documenting your Threat Models with HCL☆425Updated 6 months ago
- threatspec - continuous threat modeling, through code☆348Updated 4 years ago
- This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.☆137Updated 2 years ago
- ☆74Updated 4 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆165Updated this week
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆50Updated this week
- A standard API specification for exchanging supply chain artifacts and intelligence☆74Updated this week
- Stakeholder-Specific Vulnerability Categorization☆140Updated this week
- ☆63Updated 2 years ago
- A Continuous Threat Modeling methodology☆314Updated 2 years ago
- ☆98Updated 2 weeks ago
- boostsecurityio/poutine☆259Updated 3 weeks ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- ☆32Updated 3 years ago
- Software Component Verification Standard (SCVS)☆141Updated 11 months ago
- ☆47Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆226Updated 7 months ago
- ☆112Updated 2 months ago
- ☆82Updated 3 years ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆82Updated last week
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆61Updated 8 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆88Updated this week
- A full insecure kubernetes application for testing security tools☆70Updated this week
- Core model including reused documentation☆95Updated 2 weeks ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆72Updated 10 months ago
- A tool to check the security settings of Github Organizations.☆71Updated last year