Alternatives and similar repositories for threat-matrix-cicd:

Users that are interested in threat-matrix-cicd are comparing it to the libraries listed below

• cider-security-research / top-10-cicd-security-risks
  ☆404Updated last year
• ramimac / aws-customer-security-incidents
  A repository of breaches of AWS customers
  ☆718Updated last week
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆412Updated 4 months ago
• aquasecurity / cloud-security-remediation-guides
  Security Remediation Guides
  ☆714Updated last week
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆271Updated 4 months ago
• BishopFox / iam-vulnerable
  Use Terraform to create your own vulnerable by design AWS IAM privilege escalation playground.
  ☆487Updated 11 months ago
• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆313Updated this week
• chughes757 / SecureSoftwareSupplyChain
  This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.
  ☆137Updated 2 years ago
• devsecopsmaturitymodel / DevSecOps-MaturityModel
  ☆502Updated this week
• nccgroup / sadcloud
  A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure
  ☆676Updated last year
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆97Updated last year
• OWASP / www-project-kubernetes-top-ten
  OWASP Foundation Web Respository
  ☆572Updated 11 months ago
• jatrost / awesome-kubernetes-threat-detection
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆370Updated last year
• SummitRoute / csp_security_mistakes
  This repo has been replaced by https://www.cloudvulndb.org
  ☆721Updated 2 years ago
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆336Updated 2 years ago
• TalEliyahu / Threat_Model_Examples
  A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…
  ☆402Updated last week
• hashishrajan / cloud-security-vulnerabilities
  List of all the Publicly disclosed vulnerabilities of Public Cloud Provider like Amazon Web Services (AWS), Microsoft Azure, Google Cloud…
  ☆358Updated last year
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆635Updated 3 weeks ago
• awslabs / threat-composer
  A simple threat modeling tool to help humans to reduce time-to-value when threat modeling
  ☆497Updated last month
• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆401Updated 3 weeks ago
• easttimor / aws-incident-response
  ☆368Updated 10 months ago
• aquasecurity / chain-bench
  An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…
  ☆735Updated last month
• controlplaneio / simulator
  Kubernetes Security Training Platform - focusing on security mitigation
  ☆938Updated 4 months ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆340Updated 4 years ago
• awslabs / aws-automated-incident-response-and-forensics
  ☆378Updated last year
• PaloAltoNetworks / rbac-police
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆341Updated last year
• RhinoSecurityLabs / GCP-IAM-Privilege-Escalation
  A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.
  ☆359Updated 8 months ago
• iacsecurity / tool-compare
  ☆281Updated 2 years ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆323Updated last year