Alternatives and similar repositories for documentation:

Users that are interested in documentation are comparing it to the libraries listed below

• secureCodeBox / secureCodeBox
  secureCodeBox (SCB) - continuous secure delivery out of the box
  ☆845Updated this week
• Threagile / threagile
  Agile Threat Modeling Toolkit
  ☆653Updated last week
• juice-shop / multi-juicer
  Host and manage multiple Juice Shop instances for security trainings and Capture The Flags
  ☆282Updated last week
• Autodesk / continuous-threat-modeling
  A Continuous Threat Modeling methodology
  ☆314Updated 2 years ago
• AppSecure-nrw / security-belts
  ☆106Updated 9 months ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆353Updated 4 years ago
• TNG / elevation-of-privilege
  An online multiplayer version of the threat modeling card games: Elevation of Privilege (EoP), OWASP Cornucopia, OWASP Cumulus, and Eleva…
  ☆68Updated this week
• devsecopsmaturitymodel / DevSecOps-MaturityModel
  ☆521Updated 2 weeks ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆142Updated 11 months ago
• owaspsamm / core
  Core model including reused documentation
  ☆95Updated last week
• rpetrich / deciduous
  App that simplifies building decision trees to model adverse scenarios
  ☆205Updated 8 months ago
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆243Updated 3 years ago
• OWASP / www-project-application-security-verification-standard
  OWASP Foundation Web Respository
  ☆72Updated this week
• adamshostack / eop
  The Elevation of Privilege Threat Modeling Game
  ☆322Updated 9 months ago
• OWASP / Docker-Security
  Getting a handle on container security
  ☆648Updated last year
• iteratec / kcwarden
  Keycloak Configuration Auditor
  ☆22Updated this week
• arnepadmos / threats
  An extensive list of resources related to threat modelling. Gotta catch ’em all!
  ☆33Updated last month
• buildsec / frsca
  ☆233Updated this week
• Toreon / threat-model-playbook
  ☆86Updated 3 years ago
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆191Updated 4 months ago
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆73Updated 11 months ago
• owaspsamm / sammwise
  NextJS-based single-page application for completing and reviewing SAMM assessments
  ☆72Updated 2 years ago
• OWASP / samm
  SAMM stands for Software Assurance Maturity Model.
  ☆398Updated 2 years ago
• ossf / wg-security-tooling
  OpenSSF Security Tooling Working Group
  ☆309Updated 10 months ago
• secureCodeBox / secureCodeBox-v2
  This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.
  ☆24Updated 4 years ago
• ossf / s2c2f
  The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…
  ☆204Updated 2 months ago
• CycloneDX / specification
  OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reductio…
  ☆390Updated last week
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆278Updated last week
• OWASP / www-project-samm
  OWASP Foundation Web Respository
  ☆41Updated last year
• thomasfricke / training-kubernetes-security
  ☆177Updated 2 years ago