xvnpw / ai-threat-modeling

Related projects ⓘ

Alternatives and complementary repositories for ai-threat-modeling

• xvnpw / ai-threat-modeling-action
  AI featured threat modeling and security review action
  ☆40Updated 5 months ago
• piercing-index / cloud-vulnerabilities
  ☆36Updated 6 months ago
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated 11 months ago
• BishopFox / llm-testing-findings
  LLM Testing Findings Templates
  ☆65Updated 8 months ago
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆26Updated 3 weeks ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆27Updated 3 months ago
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆61Updated this week
• jeremylong / malicious-dependencies
  Demonstrates how a malicious dependency could negatively impact the build output.
  ☆23Updated last year
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆75Updated 2 months ago
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆30Updated 7 months ago
• naman16 / AWS-Security-Guardrails-TF
  ☆14Updated 2 weeks ago
• RichardoC / gitlab-secrets
  This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…
  ☆39Updated 2 months ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆39Updated 11 months ago
• JOSHUAJEBARAJ / GCP-GOAT
  GCP GOAT is the vulnerable application for learn the GCP Security
  ☆62Updated last year
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 4 years ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆36Updated 3 years ago
• OpenSecuritySummit / project-ASVS-User-Stories
  ☆18Updated 2 years ago
• OWASP / threat-modeling-playbook
  ☆30Updated 2 years ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆27Updated last year
• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆67Updated 6 months ago
• wayfair-incubator / malicious-chrome-extension-scanner
  Collect chrome extensions from various devices and find out if they are malicious
  ☆22Updated 2 months ago
• BBVA / susto
  Systematic Universal Security Testing Orchestration
  ☆37Updated 2 years ago
• Algbra-Labs-OSS / Chronicle
  ☆66Updated 5 months ago
• doyensec / cloudsec-tidbits
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆46Updated last year
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆55Updated 4 months ago
• secmerc / materialize-threats
  ☆61Updated last year
• P3tra-WP / Jupyter-Threat
  ☆14Updated last year
• RhinoSecurityLabs / CloudScraper
  CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
  ☆27Updated 2 years ago
• AppOmni-Labs / event-maturity-matrix
  The Event Maturity Matrix (EMM) is a comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit l…
  ☆17Updated 2 months ago
• keithmccammon / cybersecurity-models
  A collection of models for organizing, prioritizing, and understanding cybersecurity and information risk management concepts.
  ☆19Updated last month