slackhq/goSDL

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/slackhq/goSDL)

slackhq / goSDL

goSDL

☆522

Alternatives and similar repositories for goSDL

Users that are interested in goSDL are comparing it to the libraries listed below

Sorting:

Autodesk / continuous-threat-modeling
View on GitHub
A Continuous Threat Modeling methodology
☆324Jun 24, 2022Updated 3 years ago
secmerc / materialize-threats
View on GitHub
☆69Jul 18, 2025Updated 7 months ago
we45 / ThreatPlaybook
View on GitHub
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
☆280Feb 17, 2026Updated 2 weeks ago
seek-oss / listo
View on GitHub
Listo. Use questionnaires and checklists to make it easy to do the right thing, regarding the software you build.
☆28Apr 7, 2023Updated 2 years ago
OWASP / pytm
View on GitHub
A Pythonic framework for threat modeling
☆1,110Feb 24, 2026Updated last week
threatspec / threatspec
View on GitHub
threatspec - continuous threat modeling, through code
☆379Dec 30, 2020Updated 5 years ago
google / vsaq
View on GitHub
VSAQ is an interactive questionnaire application to assess the security programs of third parties.
☆858Jan 11, 2021Updated 5 years ago
duo-labs / appsec-education
View on GitHub
Presentations, training modules, and other education materials from Duo Security's Application Security team.
☆76Jul 15, 2021Updated 4 years ago
sethlaw / sputr
View on GitHub
Security Payload Unit Test Repository (SPUTR)
☆87Feb 18, 2026Updated 2 weeks ago
segmentio / threat-modeling-training
View on GitHub
Segment's Threat Modeling training for our engineers
☆245May 4, 2021Updated 4 years ago
Netflix / repokid
View on GitHub
AWS Least Privilege for Distributed, High-Velocity Deployment
☆1,148Nov 24, 2025Updated 3 months ago
mike-goodwin / owasp-threat-dragon
View on GitHub
An open source, online threat modelling tool from OWASP
☆484Jul 18, 2025Updated 7 months ago
shivsahni / NSDetect
View on GitHub
☆24Aug 9, 2022Updated 3 years ago
slackhq / go-audit
View on GitHub
go-audit is an alternative to the auditd daemon that ships with many distros
☆1,658Dec 22, 2025Updated 2 months ago
PortSwigger / attack-surface-detector
View on GitHub
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
☆14Feb 10, 2022Updated 4 years ago
michenriksen / drawio-threatmodeling
View on GitHub
Draw.io libraries for threat modeling diagrams
☆786Nov 12, 2020Updated 5 years ago
geoffrey-hill-tutamantic / rapid-threat-model-prototyping-docs
View on GitHub
This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.
☆165Mar 14, 2023Updated 2 years ago
OWASP / glue
View on GitHub
Application Security Automation
☆527Sep 5, 2023Updated 2 years ago
Yelp / fuzz-lightyear
View on GitHub
A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
☆226May 9, 2024Updated last year
paypal / scorebot
View on GitHub
☆57Jun 17, 2020Updated 5 years ago
mwielgoszewski / doorman
View on GitHub
an osquery fleet manager
☆620Dec 8, 2022Updated 3 years ago
coinbase / salus
View on GitHub
We would like to request that all contributors please clone a *fresh copy* of this repository since the September 21st maintenance.
☆29Jun 12, 2025Updated 8 months ago
dropbox / securitybot
View on GitHub
Distributed alerting for the masses!
☆992Nov 1, 2018Updated 7 years ago
Netflix-Skunkworks / diffy
View on GitHub
(DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…
☆631Jan 11, 2024Updated 2 years ago
mtesauro / AppSecToolbox-tools
View on GitHub
Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly
☆12Jun 13, 2016Updated 9 years ago
Netflix / security_monkey
View on GitHub
Security Monkey monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.
☆4,372Feb 11, 2021Updated 5 years ago
devsecops / wardley-maps
View on GitHub
A repository for wardley maps related to security topics.
☆46Feb 15, 2017Updated 9 years ago
duo-labs / cloudmapper
View on GitHub
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
☆6,264Jul 15, 2024Updated last year
BlazingWind / OWASP-ASVS-4.0-testing-guide
View on GitHub
☆124Nov 8, 2023Updated 2 years ago
google / gke-auditor
View on GitHub
☆74Sep 30, 2020Updated 5 years ago
airbnb / binaryalert
View on GitHub
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
☆1,443Dec 12, 2023Updated 2 years ago
OWASP / Maturity-Models
View on GitHub
Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
☆195Aug 27, 2018Updated 7 years ago
michenriksen / gitrob
View on GitHub
Reconnaissance tool for GitHub organizations
☆6,139Sep 20, 2022Updated 3 years ago
RandoriDev / test-saml-idp
View on GitHub
☆30Jul 29, 2021Updated 4 years ago
absoluteappsec / handouts
View on GitHub
materials we hand out
☆147Jul 17, 2025Updated 7 months ago
shehackspurple / TTT-Pushing-Left
View on GitHub
This repository will teach you have to do my talk "Pushing Left, Like a Boss".
☆71Jan 1, 2022Updated 4 years ago
duo-labs / cloudtracker
View on GitHub
CloudTracker helps you find over-privileged IAM users and roles by comparing CloudTrail logs with current IAM policies.
☆907Dec 17, 2021Updated 4 years ago
iriusrisk / bdd-security
View on GitHub
BDD Automated Security Tests for Web Applications
☆568Nov 16, 2022Updated 3 years ago
gauntlt / gauntlt
View on GitHub
a ruggedization framework that embodies the principle "be mean to your code"
☆994Jun 20, 2022Updated 3 years ago