Alternatives and similar repositories for mvsp

Users that are interested in mvsp are comparing it to the libraries listed below

• tailscale / security-policies
  Security policies for Tailscale
  ☆310Updated 3 weeks ago
• rpetrich / deciduous
  App that simplifies building decision trees to model adverse scenarios
  ☆226Updated last year
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆179Updated 2 months ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆361Updated last week
• microsoft / oss-ssc-framework
  Open Source Software Secure Supply Chain Framework
  ☆239Updated 3 years ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆75Updated this week
• OWASP / OpenCRE
  ☆138Updated last week
• klarna-incubator / gram
  Gram is Klarna's own threat model diagramming tool
  ☆328Updated 2 weeks ago
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆76Updated 5 months ago
• tldrsec / awesome-secure-defaults
  Awesome secure by default libraries to help you eliminate bug classes!
  ☆700Updated 2 months ago
• google / localtoast
  ☆115Updated 5 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆453Updated last month
• ossf / wg-metrics-and-metadata
  The purpose of the Metrics & Metadata (formerly Identifying Security Threats) working group is to enable stakeholders to have informed co…
  ☆223Updated last year
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆182Updated 3 weeks ago
• DataDog / supply-chain-firewall
  Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages
  ☆215Updated this week
• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆373Updated 4 months ago
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆245Updated 4 years ago
• smithy-security / smithy
  The security workflow engine!
  ☆136Updated 2 months ago
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆114Updated this week
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆339Updated this week
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆78Updated 11 months ago
• adamshostack / eop
  The Elevation of Privilege Threat Modeling Game
  ☆339Updated last year
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆340Updated 2 months ago
• ocsf / ocsf-docs
  OCSF Documentation
  ☆152Updated last week
• JupiterOne / starbase
  Graph-based security analysis for everyone
  ☆355Updated 2 months ago
• ReversecLabs / IAMSpy
  ☆228Updated last week
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆215Updated this week
• fwdcloudsec / known_aws_accounts
  List of known AWS accounts
  ☆252Updated last week
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆129Updated last year
• mllamazares / STRIDE-vs-ASVS
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆76Updated last year