YassineAmraoui's repositories
awesome-threat-modelling
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
action-ros-ci
Github Action to build and test ROS 2 packages using colcon
actions
A set of GitHub actions for checking your projects for vulnerabilities
API-Security
OWASP API Security Project
ApplicationInspector
A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.
archerysec
Centralize Vulnerability Assessment and Management for DevSecOps Team
awesome-devsecops
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
awesome-devsecops-1
Curating the best DevSecOps resources and tooling.
bdd-security
BDD Automated Security Tests for Web Applications
Best-README-Template
An awesome README template to jumpstart your projects!
DevSecOps
🔱 Collection and Roadmap for everyone who wants DevSecOps.
DevSecOpsGuideline
The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.
django-DefectDojo
DefectDojo is an open-source application vulnerability correlation and security orchestration tool.
juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
openvas-scanner
This repository contains the scanner component for Greenbone Vulnerability Management (GVM). If you are looking for the whole OpenVAS framework please take a look at https://community.greenbone.net/t/frequently-asked-questions-faq/5558.
OWASP-Calculator
🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
owasp-threat-dragon-demo
Demo models for OWASP Threat Model
pygoat
intentionally vuln web Application Security in django
samm
SAMM stands for Software Assurance Maturity Model.
starboard
Kubernetes-native security toolkit
threagile
Agile Threat Modeling Toolkit
threat-dragon
An open source, online threat modelling tool from OWASP
unfurl
Extract and Visualize Data from URLs using Unfurl
wapiti
Web vulnerability scanner written in Python3
Xerror
fully automated pentesting tool