Alternatives and similar repositories for documentation:

Users that are interested in documentation are comparing it to the libraries listed below

• secureCodeBox / secureCodeBox
  secureCodeBox (SCB) - continuous secure delivery out of the box
  ☆793Updated this week
• AppSecure-nrw / security-belts
  ☆105Updated 6 months ago
• juice-shop / multi-juicer
  Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
  ☆277Updated last week
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆639Updated this week
• TNG / elevation-of-privilege
  An online multiplayer version of the threat modeling card games: Elevation of Privilege (EoP), OWASP Cornucopia, OWASP Cumulus, and Eleva…
  ☆64Updated this week
• adamshostack / eop
  The Elevation of Privilege Threat Modeling Game
  ☆314Updated 7 months ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆57Updated 5 years ago
• owaspsamm / core
  Core model including reused documentation
  ☆92Updated 4 months ago
• arnepadmos / threats
  An extensive list of resources related to threat modelling. Gotta catch ’em all!
  ☆31Updated last month
• devsecopsmaturitymodel / DevSecOps-MaturityModel
  ☆502Updated this week
• iteratec / kcwarden
  Keycloak Configuration Auditor
  ☆13Updated this week
• thomasfricke / training-kubernetes-security
  ☆177Updated 2 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆138Updated 9 months ago
• c0rdis / security-champions-playbook
  Security Champions Playbook v 2.1
  ☆356Updated last year
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆340Updated 4 years ago
• ossf / s2c2f
  The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…
  ☆195Updated 4 months ago
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆313Updated 2 years ago
• dbsystel / trivy-vulnerability-explorer
  Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive d…
  ☆119Updated this week
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆398Updated 2 years ago
• OWASP / Docker-Security
  Getting a handle on container security
  ☆640Updated last year
• ossf / wg-metrics-and-metadata
  The purpose of the Metrics & Metadata (formerly Identifying Security Threats) working group is to enable stakeholders to have informed co…
  ☆221Updated 8 months ago
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆239Updated 3 years ago
• rpetrich / deciduous
  App that simplifies building decision trees to model adverse scenarios
  ☆192Updated 6 months ago
• OWASP / www-project-kubernetes-top-ten
  OWASP Foundation Web Respository
  ☆572Updated 11 months ago
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆189Updated last month
• ossf / wg-supply-chain-integrity
  Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …
  ☆178Updated 11 months ago
• cider-security-research / top-10-cicd-security-risks
  ☆403Updated 2 years ago
• OWASP / DevSecOpsGuideline
  The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.
  ☆869Updated 6 months ago
• ossf / wg-security-tooling
  OpenSSF Security Tooling Working Group
  ☆304Updated 8 months ago
• cncf / financial-user-group
  💰💸☁️ For those interested in running Kubernetes in highly regulated environments, particularly financial services
  ☆303Updated 2 years ago