Alternatives and similar repositories for DevSecOps-Toolchain

Users that are interested in DevSecOps-Toolchain are comparing it to the libraries listed below

• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆48Updated 8 years ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆179Updated 6 years ago
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆194Updated 6 years ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆279Updated last month
• lightspin-tech / red-shadow
  Lightspin AWS IAM Vulnerability Scanner
  ☆96Updated 4 years ago
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆134Updated 5 years ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 5 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 2 years ago
• mykter / aws-security-cert-service-notes
  Security aspects of AWS products for the Security Specialist certification
  ☆210Updated 3 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 5 years ago
• stuhirst / awssecurity
  for AWS Security material
  ☆247Updated 3 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆73Updated 3 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• wickett / lambhack
  A very vulnerable serverless application in AWS Lambda
  ☆95Updated 5 years ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆35Updated 4 years ago
• DinisCruz / Book_SecDevOps_Risk_Workflow
  Content for 'JIRA Risk Project' book published at LeanPub
  ☆57Updated 7 years ago
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆46Updated 8 years ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆187Updated 8 months ago
• lightspin-tech / red-detector
  Scan your EC2 instance to find its vulnerabilities using Vuls (https://vuls.io/en/)
  ☆88Updated 2 years ago
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆81Updated 2 weeks ago
• prevade / cloudjack
  Route53/CloudFront Vulnerability Assessment Utility
  ☆85Updated last year
• riskprofiler / CloudFrontier
  Monitor the internet attack surface of various public cloud environments. Currently supports AWS, GCP, Azure, DigitalOcean and Oracle Clo…
  ☆124Updated last year
• ihamburglar / Redboto
  Red Team Scripts for AWS.
  ☆168Updated 4 years ago
• threatspec / threatspec
  threatspec - continuous threat modeling, through code
  ☆357Updated 4 years ago
• paypal / scorebot
  ☆57Updated 4 years ago
• krol3 / kubernetes-security-checklist
  Awesome resources about Security in Kubernetes
  ☆42Updated 2 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆111Updated 4 years ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆148Updated 4 years ago
• disruptops / cred_scanner
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆91Updated last year
• tenable / KaiMonkey
  KaiMonkey provides vulnerable infrastructure as code (IaC) to help explore and understand common cloud security threats exposed via IaC.
  ☆101Updated last year