sk3pp3r / DevSecOps-ArsenalLinks
A curated hub of DevSecOps tools to secure workflows, optimized for CI/CD and more
☆29Updated 2 weeks ago
Alternatives and similar repositories for DevSecOps-Arsenal
Users that are interested in DevSecOps-Arsenal are comparing it to the libraries listed below
Sorting:
- ☆559Updated this week
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.☆1,016Updated last month
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆828Updated 10 months ago
- Awesome secure by default libraries to help you eliminate bug classes!☆700Updated 2 months ago
- OWASP Foundation Web Respository☆600Updated 2 months ago
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆569Updated last week
- A curated list of awesome CI CD security resources☆805Updated 4 months ago
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆81Updated last month
- DevSecOps Pipeline using SAST + DAST and SCA tools☆72Updated 4 months ago
- 📚 A curated list of awesome Docker security resources☆707Updated 2 months ago
- Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, wor…☆484Updated 4 years ago
- CICD Using GitHub Action and Harness☆19Updated 2 years ago
- Vulnerable app with examples showing how to not use secrets☆1,395Updated this week
- A utility to (re-)import findings and language data into DefectDojo☆43Updated last year
- A collection of tools to improve your containerized apps security posture☆150Updated last year
- OWASP Foundation Web Respository☆101Updated last month
- Security Remediation Guides☆745Updated 2 months ago
- A list of cloud security tools and vendors.☆184Updated last year
- Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams☆78Updated this week
- First edition of the Automate All The Things Saga☆256Updated last year
- CI/CD Security Analyzer☆729Updated 11 months ago
- The CoGuard CLI Tool☆103Updated last week
- Examples of integrating the Snyk CLI into a CI/CD system☆103Updated last year
- Damn Vulnerable Kubernetes App (DVKA) is a series of apps deployed on Kubernetes that are damn vulnerable.☆196Updated 4 months ago
- Security Champions Playbook v 2.1☆389Updated 2 years ago
- A curated list of resources about detecting threats and defending Kubernetes systems.☆404Updated 2 years ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆179Updated last month
- Open source templates you can use to bootstrap your security programs☆887Updated last month
- ☆247Updated 5 months ago
- Vulnerability scanning just got lazier☆317Updated this week