Alternatives and similar repositories for DevSecOps-Arsenal

Users that are interested in DevSecOps-Arsenal are comparing it to the libraries listed below

• devsecopsmaturitymodel / DevSecOps-MaturityModel
  ☆559Updated this week
• OWASP / DevSecOpsGuideline
  The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.
  ☆1,016Updated last month
• Legit-Labs / legitify
  Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
  ☆828Updated 10 months ago
• tldrsec / awesome-secure-defaults
  Awesome secure by default libraries to help you eliminate bug classes!
  ☆700Updated 2 months ago
• OWASP / www-project-kubernetes-top-ten
  OWASP Foundation Web Respository
  ☆600Updated 2 months ago
• TupleType / awesome-cicd-attacks
  Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
  ☆569Updated last week
• myugan / awesome-cicd-security
  A curated list of awesome CI CD security resources
  ☆805Updated 4 months ago
• OWASP / www-project-devsecops-guideline
  The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …
  ☆81Updated last month
• magnologan / gha-devsecops
  DevSecOps Pipeline using SAST + DAST and SCA tools
  ☆72Updated 4 months ago
• myugan / awesome-docker-security
  📚 A curated list of awesome Docker security resources
  ☆707Updated 2 months ago
• Vinum-Security / kubernetes-security-checklist
  Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, wor…
  ☆484Updated 4 years ago
• judebantony / cicd-github-action-example
  CICD Using GitHub Action and Harness
  ☆19Updated 2 years ago
• OWASP / wrongsecrets
  Vulnerable app with examples showing how to not use secrets
  ☆1,395Updated this week
• MaibornWolff / dd-import
  A utility to (re-)import findings and language data into DefectDojo
  ☆43Updated last year
• koslib / awesome-containerized-security
  A collection of tools to improve your containerized apps security posture
  ☆150Updated last year
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆101Updated last month
• aquasecurity / cloud-security-remediation-guides
  Security Remediation Guides
  ☆745Updated 2 months ago
• someengineering / cloud-security-list
  A list of cloud security tools and vendors.
  ☆184Updated last year
• Mixeway / Flow
  Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams
  ☆78Updated this week
• tferrari92 / automate-all-the-things
  First edition of the Automate All The Things Saga
  ☆256Updated last year
• CycodeLabs / raven
  CI/CD Security Analyzer
  ☆729Updated 11 months ago
• coguardio / coguard-cli
  The CoGuard CLI Tool
  ☆103Updated last week
• snyk-labs / snyk-cicd-integration-examples
  Examples of integrating the Snyk CLI into a CI/CD system
  ☆103Updated last year
• Alevsk / dvka
  Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.
  ☆196Updated 4 months ago
• c0rdis / security-champions-playbook
  Security Champions Playbook v 2.1
  ☆389Updated 2 years ago
• jatrost / awesome-kubernetes-threat-detection
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆404Updated 2 years ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆179Updated last month
• securitytemplates / sectemplates
  Open source templates you can use to bootstrap your security programs
  ☆887Updated last month
• kubesec-diagram / kubesec-diagram.github.io
  ☆247Updated 5 months ago
• owenrumney / lazytrivy
  Vulnerability scanning just got lazier
  ☆317Updated this week