samlothen / QRALib
Quantitative Risk Analysis in Cybersecurity Library (QRALib)
β15Updated last year
Alternatives and similar repositories for QRALib:
Users that are interested in QRALib are comparing it to the libraries listed below
- Factor Analysis of Information Risk (FAIR) model written in Python. Managed and maintained by Hive Systemsβ95Updated last month
- πMaterials for the Hands-On Introduction to OpenFAIR Risk Analysis with Tidyriskβ13Updated 4 years ago
- Repository for the Open Information Security Risk Universeβ63Updated 2 years ago
- βOpen Source Toolkit for Conducting Quantitative Risk Assessment Interviewsβ35Updated 11 months ago
- Factor Analysis of Information Risk (FAIR) tool developed in Rβ20Updated 6 years ago
- Open FAIR Courseβ13Updated 5 years ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and thβ¦β71Updated 4 months ago
- Updated incident response generator for training classesβ43Updated 3 years ago
- ποΈ STRIDE vs. ASVS equivalence tableβ75Updated 5 months ago
- βOpen Source Toolkit for Quantitative Risk Assessmentβ163Updated 2 years ago
- Documentation on the Cyber Defense Matrixβ24Updated last year
- read the docs version of risk managementβ24Updated last year
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findingsβ137Updated 3 years ago
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizationsβ37Updated last month
- Legal, procedural and policies document templates for operating MISP and information sharing communitiesβ37Updated 2 years ago
- Questions to ask about the team and company when you're interviewing for a CISO positionβ12Updated 3 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.β64Updated 5 years ago
- β44Updated 2 years ago
- β63Updated 2 years ago
- A collection of security related user stories compatible with NIST Special Publication 800-53β35Updated 7 years ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.β62Updated 4 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.β48Updated 8 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. β¦β61Updated 7 months ago
- Automatically exported from code.google.com/p/nipper-ngβ69Updated 2 years ago
- A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systemsβ56Updated last year
- Presentations, training modules, and other education materials from Duo Security's Application Security team.β73Updated 3 years ago
- This script is used to generate some basic detections of the aws security servicesβ72Updated 3 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.β42Updated 8 years ago
- a curated list of useful threat modeling resourcesβ128Updated 7 months ago
- β36Updated last year