Alternatives and similar repositories for owasp-asvs-github:

Users that are interested in owasp-asvs-github are comparing it to the libraries listed below

• radicallyopensecurity / pentesting-scripts
  Scripts that we use for pentesting
  ☆42Updated 8 years ago
• mtesauro / AppSecToolbox-tools
  Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly
  ☆12Updated 8 years ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆14Updated 2 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• kelbyludwig / saml-attack-surface
  ☆28Updated 8 years ago
• claudijd / rotten_apple
  A tool for testing continuous integration (CI) or continuous delivery (CD) system security
  ☆23Updated 11 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆76Updated 3 years ago
• secdec / attack-surface-detector-zap
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆63Updated last year
• dxa4481 / santaHog
  Scans packages in npm and pypi for secrets
  ☆30Updated 5 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆37Updated 7 years ago
• anshumanbh / FASTSAM
  Framework for Automated Security Testing that is Scaleable and Asynchronous built on Microservices
  ☆18Updated 8 years ago
• appsecco / owasp-threat-dragon-gitlab
  OWASP Threat Dragon with Gitlab Integration
  ☆25Updated 7 years ago
• EdOverflow / security-template
  A static website template for security pages.
  ☆50Updated 6 months ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated last year
• PortSwigger / attack-surface-detector
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆14Updated 3 years ago
• EdOverflow / smith
  Simple wrapper for meg that sieves through meg's output for you.
  ☆60Updated 5 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆43Updated 3 years ago
• bugbounty-site / GitSecure
  Detect exposed API keys on GitHub commits.
  ☆34Updated 2 years ago
• toniblyx / aws-forensic-tools
  Tools for AWS forensics
  ☆63Updated 9 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 6 years ago
• CaliDog / tachikoma
  Tachikoma is a security alerting framework for human beings
  ☆22Updated 6 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆39Updated 10 years ago
• tomsteele / burpstaticscan
  Use burp's JS static code analysis on code from your local system.
  ☆42Updated 8 years ago
• P3tra-WP / Jupyter-Threat
  ☆14Updated 2 years ago
• ra1nb0rn / avain
  A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks
  ☆65Updated 3 years ago
• zidekmat / graphql_beautifier
  Burp Suite extension to help make Graphql request more readable
  ☆31Updated 7 years ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 7 years ago
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 4 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆39Updated 2 years ago
• appsecco / using-docker-kubernetes-for-automating-appsec-and-osint-workflows
  Repository for all the workshop content delivered at nullcon X on 1st of March 2019
  ☆81Updated 5 years ago