Alternatives and similar repositories for owasp-asvs-github:

Users that are interested in owasp-asvs-github are comparing it to the libraries listed below

• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆14Updated 2 years ago
• radicallyopensecurity / pentesting-scripts
  Scripts that we use for pentesting
  ☆42Updated 8 years ago
• claudijd / rotten_apple
  A tool for testing continuous integration (CI) or continuous delivery (CD) system security
  ☆23Updated 11 years ago
• torque59 / AWS-Vulnerable-Lambda
  An AWS Lambda vulnerable application written in flask.
  ☆48Updated 7 years ago
• PortSwigger / attack-surface-detector
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆14Updated 3 years ago
• mtesauro / AppSecToolbox-tools
  Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly
  ☆12Updated 8 years ago
• nccgroup / s3_objects_check
  Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.
  ☆76Updated 3 years ago
• kelbyludwig / saml-attack-surface
  ☆28Updated 8 years ago
• dxa4481 / santaHog
  Scans packages in npm and pypi for secrets
  ☆30Updated 5 years ago
• EdOverflow / security-template
  A static website template for security pages.
  ☆50Updated 6 months ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆37Updated 7 years ago
• BishopFox / cyberdic
  An auxiliary spellcheck dictionary that corresponds with the Bishop Fox Cybersecurity Style Guide
  ☆84Updated 2 years ago
• Srendi / Better-AWS-SCAN
  ☆11Updated 8 years ago
• appsecco / owasp-threat-dragon-gitlab
  OWASP Threat Dragon with Gitlab Integration
  ☆25Updated 7 years ago
• himazawa / bento
  Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.
  ☆77Updated 4 years ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated last year
• marco-lancini / docker_burp
  Burp as a Docker Container
  ☆59Updated 4 years ago
• Beyarz / Cve-api
  Unofficial api for cve.mitre.org
  ☆41Updated 3 years ago
• toniblyx / aws-forensic-tools
  Tools for AWS forensics
  ☆64Updated 9 years ago
• glen-mac / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆111Updated 5 years ago
• VirtueSecurity / aws-extender-cli
  AWS Extender CLI is a command-line script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common mi…
  ☆82Updated 4 years ago
• pentestgeek / burpcommander
  Ruby command-line interface to Burp Suite's REST API
  ☆59Updated 4 years ago
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆91Updated 11 months ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆39Updated 2 years ago
• skahwah / automato
  automato should help with automating some of the user-focused enumeration tasks during an internal penetration test.
  ☆72Updated 5 years ago
• ticarpi / my-pentesting-repo
  This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…
  ☆52Updated 5 years ago
• DenizParlak / hayat
  Hayat is a script for report and analyze Google Cloud Platform resources.
  ☆80Updated 5 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• jaredhaight / scripts
  A collection of scripts that I've written while pentesting.
  ☆31Updated 6 years ago