Alternatives and similar repositories for mvsp

Users that are interested in mvsp are comparing it to the libraries listed below

• rpetrich / deciduous
  App that simplifies building decision trees to model adverse scenarios
  ☆215Updated last year
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆172Updated 7 months ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆306Updated 2 weeks ago
• tailscale / security-policies
  Security policies for Tailscale
  ☆296Updated 2 months ago
• OWASP / OpenCRE
  ☆116Updated this week
• microsoft / oss-ssc-framework
  Open Source Software Secure Supply Chain Framework
  ☆236Updated 2 years ago
• tldrsec / awesome-secure-defaults
  Awesome secure by default libraries to help you eliminate bug classes!
  ☆697Updated 2 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆432Updated last month
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆71Updated 2 years ago
• klarna-incubator / gram
  Gram is Klarna's own threat model diagramming tool
  ☆319Updated this week
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆70Updated 2 weeks ago
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆174Updated last week
• google / localtoast
  ☆113Updated this week
• ossf / wg-metrics-and-metadata
  The purpose of the Metrics & Metadata (formerly Identifying Security Threats) working group is to enable stakeholders to have informed co…
  ☆222Updated last year
• JupiterOne / starbase
  Graph-based security analysis for everyone
  ☆345Updated last year
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆196Updated 3 months ago
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆122Updated 5 months ago
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆243Updated 4 years ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆330Updated 2 months ago
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆488Updated last week
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆110Updated last week
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 10 months ago
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious npm and PyPI packages
  ☆150Updated last week
• ossf / secure-sw-dev-fundamentals
  Secure Software Development Fundamentals courses (from the OpenSSF Best Practices WG)
  ☆197Updated last month
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆230Updated 11 months ago
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆191Updated 3 months ago
• openvex / spec
  OpenVEX Specification
  ☆155Updated last month
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆361Updated 4 years ago
• luisfontes19 / orgsec-guide
  A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program
  ☆40Updated last month
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆285Updated 10 months ago