Alternatives and similar repositories for KaiMonkey

Users that are interested in KaiMonkey are comparing it to the libraries listed below

• trustoncloud / threatmodel-for-aws-s3
  Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆158Updated 2 years ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆191Updated last year
• RhinoSecurityLabs / IAMActionHunter
  An AWS IAM policy statement parser and query tool.
  ☆195Updated 4 months ago
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 8 months ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆77Updated last year
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆177Updated 11 months ago
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143Updated 6 months ago
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆58Updated 2 years ago
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆81Updated 3 years ago
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆288Updated last year
• orcasecurity / orca-toolbox
  ☆123Updated 5 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆438Updated last month
• ksoclabs / kube-goat
  A deliberately vulnerable Kubernetes cluster
  ☆130Updated last year
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆94Updated 3 months ago
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆146Updated last year
• naman16 / AWS-Security-Guardrails-TF
  ☆31Updated last year
• Hacking-the-Cloud / htc-ctfs
  Holds the public Hacking the Cloud CTFs.
  ☆59Updated last year
• PaloAltoNetworks / IAM-Deescalate
  IAM-Deescalate helps mitigate privilege escalation risk in AWS identity and access management (IAM)
  ☆98Updated 3 years ago
• OWASP / www-project-top-10-ci-cd-security-risks
  OWASP Foundation Web Respository
  ☆100Updated last week
• secmerc / materialize-threats
  ☆69Updated 3 months ago
• Rezonate-io / github-oidc-checker
  Tools that checks for misconfigured access to Github OIDC from AWS roles and GCP service accounts
  ☆61Updated 2 years ago
• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆365Updated last month
• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆399Updated 10 months ago
• GitGuardian / ggcanary
  GitGuardian Canary Tokens
  ☆145Updated 4 months ago
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆192Updated 6 months ago
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆95Updated 4 years ago
• marco-lancini / utils
  Useful scripts, Docker images, docker-compose apps, and Terraform modules.
  ☆151Updated 2 weeks ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆336Updated 6 months ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆37Updated 7 months ago
• SummitRoute / aws_exposable_resources
  Resource types that can be publicly exposed on AWS
  ☆329Updated 3 years ago