shehackspurple / TTT-Pushing-Left
This repository will teach you have to do my talk "Pushing Left, Like a Boss".
☆69Updated 2 years ago
Related projects: ⓘ
- Security Scanner based on CIS benchmark 1.1 inspired by Scout2☆52Updated last year
- Repo to hold mapping of user-security-stories☆112Updated 5 years ago
- ☆78Updated 3 years ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆61Updated 4 years ago
- AppSecPipeline Specification for DevOps automation.☆38Updated last year
- Threat Modeling Manifesto☆24Updated 2 months ago
- ☆101Updated this week
- ☆18Updated 2 years ago
- Repository for the Open Information Security Risk Universe☆63Updated 2 years ago
- A repository for wardley maps related to security topics.☆46Updated 7 years ago
- IriusRisk Community☆62Updated last year
- ☆60Updated last year
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆46Updated 7 years ago
- Privacy Cards for Software Developers☆50Updated 5 years ago
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆69Updated 3 years ago
- This script is used to generate some basic detections of the aws security services☆71Updated 2 years ago
- A Terraform module for GRR: the distributed incident forensics and response framework☆51Updated 4 years ago
- Content for 'JIRA Risk Project' book published at LeanPub☆55Updated 6 years ago
- Threats Manager Platform Core libraries and SDK☆69Updated last week
- Rapidly apply hundreds of security controls in Azure☆180Updated 10 months ago
- The Microsoft Cybersecurity Reference Architecture (https://aka.ms/MCRA) describes Microsoft’s cybersecurity capabilities and how they in…☆19Updated 6 years ago
- ☆23Updated last year
- A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systems☆56Updated 8 months ago
- Open Threat Modeling Template☆48Updated 2 months ago
- A collection of DoD and Federal Government Cloud Computing Resources☆47Updated 3 years ago
- Systematic Universal Security Testing Orchestration☆37Updated 2 years ago
- Vendor Security Model Contract☆97Updated 2 years ago
- Documentation on the Cyber Defense Matrix☆24Updated last year
- A collection of security related user stories compatible with NIST Special Publication 800-53☆32Updated 7 years ago
- Open source security career ladders☆114Updated last year