shenril / owasp-asvs-checklist
OWASP ASVS checklist for audits
☆202Updated last year
Alternatives and similar repositories for owasp-asvs-checklist:
Users that are interested in owasp-asvs-checklist are comparing it to the libraries listed below
- A simple web app that helps developers understand the ASVS requirements.☆157Updated last month
- ☆123Updated last year
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆107Updated last year
- ☆87Updated 3 years ago
- Content for OWASP Summit 2017 site☆128Updated 4 years ago
- Security Champions Playbook v 2.1☆365Updated last year
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆279Updated 3 weeks ago
- OWASP Cloud Security - Enabling conversations through threat and control stories☆180Updated 6 years ago
- SAMM stands for Software Assurance Maturity Model.☆398Updated 2 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆193Updated 6 years ago
- Repo to hold mapping of user-security-stories☆120Updated 6 years ago
- This project is about creating and publishing threat model examples.☆419Updated 3 years ago
- A step-by-step walkthrough of CloudGoat 2.0 scenarios.☆134Updated 4 years ago
- Segment's Threat Modeling training for our engineers☆243Updated 3 years ago
- Container Security Verification Standard☆58Updated 5 years ago
- OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development☆177Updated 3 months ago
- Sample scan files for testing DefectDojo imports☆78Updated 3 months ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆45Updated 2 years ago
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.☆160Updated 2 years ago
- ☆63Updated 2 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆76Updated 8 months ago
- The Secure Coding Framework☆268Updated 4 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆48Updated 8 years ago
- Amazon bucket brute force tool☆99Updated 11 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆102Updated last year
- A Continuous Threat Modeling methodology☆318Updated 2 years ago
- materials we hand out☆142Updated 3 weeks ago
- A Burp plugin to export findings to DefectDojo☆30Updated last year
- 🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment☆158Updated 3 years ago