shehackspurple / TTT-Pushing-Left

Related projects: ⓘ

• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆52Updated last year
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆112Updated 5 years ago
• Toreon / threat-model-playbook
  ☆78Updated 3 years ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆61Updated 4 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆38Updated last year
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆24Updated 2 months ago
• sk4ddy / remediatetheflag
  ☆101Updated this week
• OpenSecuritySummit / project-ASVS-User-Stories
  ☆18Updated 2 years ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆63Updated 2 years ago
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆46Updated 7 years ago
• iriusrisk / Community
  IriusRisk Community
  ☆62Updated last year
• secmerc / materialize-threats
  ☆60Updated last year
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆46Updated 7 years ago
• WithSecureOpenSource / elevation-of-privacy
  Privacy Cards for Software Developers
  ☆50Updated 5 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆69Updated 3 years ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 2 years ago
• spotify / terraform-google-grr
  A Terraform module for GRR: the distributed incident forensics and response framework
  ☆51Updated 4 years ago
• DinisCruz / Book_SecDevOps_Risk_Workflow
  Content for 'JIRA Risk Project' book published at LeanPub
  ☆55Updated 6 years ago
• simonec73 / threatsmanager
  Threats Manager Platform Core libraries and SDK
  ☆69Updated last week
• salesforce / cloud-guardrails
  Rapidly apply hundreds of security controls in Azure
  ☆180Updated 10 months ago
• MarkSimos / MCRA
  The Microsoft Cybersecurity Reference Architecture (https://aka.ms/MCRA) describes Microsoft’s cybersecurity capabilities and how they in…
  ☆19Updated 6 years ago
• karimelmel / cloud-security-bootcamp
  ☆23Updated last year
• adamshostack / conflictmodeling
  A place to gather and organize information about using threat modeling frameworks to deal with social conflict in online systems
  ☆56Updated 8 months ago
• matthiasrohr / OTMT
  Open Threat Modeling Template
  ☆48Updated 2 months ago
• chughes29 / DoD-Federal-Government-Cloud-Computing-Resources
  A collection of DoD and Federal Government Cloud Computing Resources
  ☆47Updated 3 years ago
• BBVA / susto
  Systematic Universal Security Testing Orchestration
  ☆37Updated 2 years ago
• dropbox / vsmc
  Vendor Security Model Contract
  ☆97Updated 2 years ago
• OWASP / www-project-cyber-defense-matrix
  Documentation on the Cyber Defense Matrix
  ☆24Updated last year
• GovReady / security-stories-nist800-53
  A collection of security related user stories compatible with NIST Special Publication 800-53
  ☆32Updated 7 years ago
• product-security-group / Security_Ladders
  Open source security career ladders
  ☆114Updated last year