Minimum Viable Secure Product mvsp.dev
β204Dec 17, 2024Updated last year
Alternatives and similar repositories for mvsp
Users that are interested in mvsp are comparing it to the libraries listed below
Sorting:
- β20Jan 18, 2022Updated 4 years ago
- ποΈ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.β76Aug 22, 2024Updated last year
- Interactive CD dependency diagramβ29Feb 15, 2026Updated 2 weeks ago
- We borrow the concept of 'personas' from UX/service design and apply it to threat actors to improve understanding between security, technβ¦β11Jun 17, 2020Updated 5 years ago
- β15Dec 22, 2021Updated 4 years ago
- Slack alert bot for matching Github Audit Eventsβ10Nov 12, 2024Updated last year
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.β110Jan 16, 2024Updated 2 years ago
- Yet Another SCA toolβ13Nov 10, 2022Updated 3 years ago
- OWASP Application Security Verification Standard 4.0 Checklistβ33Apr 15, 2019Updated 6 years ago
- β14Nov 13, 2023Updated 2 years ago
- A tool for folks who `git clone` first and ask questions laterβ66Sep 12, 2025Updated 5 months ago
- Systematic Universal Security Testing Orchestrationβ37Mar 28, 2022Updated 3 years ago
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics reportβ18Feb 1, 2025Updated last year
- Simple tool to track maturity assessmentsβ13Jul 8, 2023Updated 2 years ago
- β15Jan 11, 2024Updated 2 years ago
- Probely's GitHub Actionβ17Apr 8, 2025Updated 10 months ago
- A Java library for programmatically calculating OWASP Risk Rating scoresβ19Apr 3, 2023Updated 2 years ago
- Software Component Verification Standard (SCVS)β156Apr 1, 2025Updated 11 months ago
- Register your Kubernetes IPs to monitor.shodan.ioβ18Oct 28, 2022Updated 3 years ago
- Catalogist is the easy way to catalog and make your software and (micro)services visible to your organization in a lightweight and develoβ¦β20Nov 12, 2024Updated last year
- Prompts Methods to find the vulnerabilities in Generative Modelsβ20Feb 23, 2023Updated 3 years ago
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different soβ¦β53Nov 25, 2025Updated 3 months ago
- A repo to conduct vulnerability enrichment.β738Updated this week
- A step-by-step guide on how to install and sign a linux kernel to boot with Secure Boot, because it shouldn't be so hard to have the lateβ¦β19Feb 15, 2023Updated 3 years ago
- This repository provides a comprehensive collection of Pulumi scenarios utilized by cnappgoatβ21Jan 28, 2025Updated last year
- β19Aug 10, 2021Updated 4 years ago
- β25Aug 3, 2024Updated last year
- A checklist for defending private or corporate networks.β17Jan 1, 2020Updated 6 years ago
- Repository to archive AWS Documentation for local useβ50Oct 14, 2024Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.β21Mar 9, 2025Updated 11 months ago
- β563Feb 25, 2026Updated last week
- A documentation and tracking project with the goal of making package management systems more secure.β51Mar 5, 2021Updated 5 years ago
- Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approachβ157Updated this week
- OWASP Foundation web repositoryβ52Dec 21, 2025Updated 2 months ago
- Supply-chain Levels for Software Artifactsβ1,816Updated this week
- Vendor Security Model Contractβ97Jul 3, 2022Updated 3 years ago
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managerβ¦β912Updated this week
- OpenSSF Scorecard - Security health metrics for Open Sourceβ5,283Feb 25, 2026Updated last week
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.β55Dec 9, 2025Updated 2 months ago