veracode / veracode-pipeline-mitigation
Retrieves findings with APPROVED mitigations from an application's policy scan (or sandbox) and creates a baseline file for Pipeline Scan. Mitigations in a "proposed" state will not be retrieved.
☆11Updated last year
Alternatives and similar repositories for veracode-pipeline-mitigation
Users that are interested in veracode-pipeline-mitigation are comparing it to the libraries listed below
Sorting:
- Python helper library for working with the Veracode APIs. Handles retries, pagination, and other features of the modern Veracode REST API…☆23Updated last week
- The Seiso standard python cookiecutter template☆13Updated this week
- This is a companion to the Security Engineer Questions�☆202Updated last year
- completely ridiculous API (crAPI)☆1,237Updated this week
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆983Updated 5 months ago
- Create your own vulnerable by design AWS penetration testing playground☆373Updated 3 weeks ago
- An open source threat modeling tool from OWASP☆1,098Updated last week
- AzureGoat : A Damn Vulnerable Azure Infrastructure☆843Updated 6 months ago
- This Repo serves as a collection of shared security and penetration testing resources for the cloud.☆267Updated 9 months ago
- The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and secu…☆496Updated 2 weeks ago
- Snyk filtering for SNYK CLI☆16Updated 6 months ago
- An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRI…☆721Updated 3 weeks ago
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆429Updated 2 months ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆108Updated last year
- materials we hand out☆144Updated last month
- Websec interview questions by tib3rius answered☆308Updated last year
- Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethica…☆681Updated last month
- A tool for standing up (and tearing down!) purposefully insecure cloud infrastructure☆701Updated last year
- This is the public repository for TCM Security's 12 hour SOC 101 course on YouTube.☆30Updated 2 months ago
- GCPGoat : A Damn Vulnerable GCP Infrastructure☆384Updated 6 months ago
- A Broken Application - Very Vulnerable!☆159Updated last week
- Awesome secure by default libraries to help you eliminate bug classes!☆690Updated 3 weeks ago
- Security interview questions with possible explanation for roles in AppSec, Pentesting, Cloud Security, DevSecOps, Network Security and s…☆348Updated 4 months ago
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.☆927Updated 2 months ago
- Vulnerable app with examples showing how to not use secrets☆1,310Updated this week
- ☆13Updated last year
- GitHub Actions Pipeline Enumeration and Attack Tool☆639Updated last month
- https://academy.tcm-sec.com/☆104Updated last month
- Take control of you SCM security posture enforcing policy as code☆13Updated 3 months ago
- Burp Suite Certified Practitioner Exam Study☆1,040Updated last month