Alternatives and similar repositories for mvsp:

Users that are interested in mvsp are comparing it to the libraries listed below

• tailscale / security-policies
  Security policies for Tailscale
  ☆290Updated last week
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆172Updated 5 months ago
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆267Updated this week
• rpetrich / deciduous
  App that simplifies building decision trees to model adverse scenarios
  ☆208Updated 9 months ago
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆71Updated last year
• microsoft / oss-ssc-framework
  Open Source Software Secure Supply Chain Framework
  ☆236Updated 2 years ago
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆120Updated 3 months ago
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious PyPI and npm packages
  ☆140Updated this week
• dropbox / vsmc
  Vendor Security Model Contract
  ☆98Updated 2 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 8 months ago
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆243Updated 4 years ago
• google / localtoast
  ☆112Updated 3 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆426Updated 8 months ago
• chughes757 / SecureSoftwareSupplyChain
  This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.
  ☆138Updated 2 years ago
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆167Updated last week
• openvex / spec
  OpenVEX Specification
  ☆148Updated last month
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆329Updated last week
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆194Updated this week
• OWASP / OpenCRE
  ☆102Updated last week
• trufflesecurity / how-to-rotate
  An open-source collection of API key rotation tutorials.
  ☆71Updated last month
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆313Updated 10 months ago
• tailscale / ToBeReviewedBot
  GitHub App to watch for PRs merged without a reviewer approving.
  ☆124Updated 2 weeks ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆171Updated last month
• owaspsamm / core
  Core model including reused documentation
  ☆96Updated last month
• chainguard-dev / justtrustme
  ☆54Updated this week
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆95Updated 3 weeks ago
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆249Updated 2 years ago
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated last month
• owasp-change / owasp-change.github.io
  An Open Letter to the OWASP Board
  ☆106Updated last year
• ossf / wg-metrics-and-metadata
  The purpose of the Metrics & Metadata (formerly Identifying Security Threats) working group is to enable stakeholders to have informed co…
  ☆222Updated last year