semgrep-old / rules-owasp-asvsLinks
Semgrep rules corresponding to the OWASP ASVS standard
☆27Updated 4 years ago
Alternatives and similar repositories for rules-owasp-asvs
Users that are interested in rules-owasp-asvs are comparing it to the libraries listed below
Sorting:
- ☆67Updated 2 months ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆77Updated 4 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆77Updated last year
- ☆124Updated last year
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆47Updated 3 years ago
- Manager of third-party sources of Semgrep rules 🗂☆88Updated last year
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆135Updated 5 years ago
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated 2 months ago
- Maturity Model Collaborative project☆15Updated 2 years ago
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 8 months ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆81Updated 2 years ago
- Jekyll Files for cloudsecwiki.com☆49Updated 4 years ago
- OWASP Foundation Web Respository☆37Updated last year
- ☆113Updated 2 years ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)☆31Updated 2 years ago
- ZAP scripts to implement ASVS L1 checking☆16Updated 3 years ago
- A collection of my Semgrep rules☆49Updated 2 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆66Updated 3 months ago
- AWS Security Checks☆40Updated 7 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Updated last year
- ☆32Updated 2 years ago
- Route53/CloudFront Vulnerability Assessment Utility☆86Updated 2 years ago
- Scans Slack for API tokens, credentials, passwords, and more using YARA rules☆40Updated 4 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Updated 3 years ago
- Python API library for DefectDojo☆44Updated 2 years ago
- Application and Service Fingerprinting☆133Updated 2 years ago
- AppSecPipeline Specification for DevOps automation.☆40Updated 2 years ago
- drHEADer helps with the audit of security headers received in response to a single request or a list of requests.☆111Updated 8 months ago