raindance
Attack map tool
A framework to simplify attack mapping and security modeling in software development
Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
46 stars
14 watching
24 forks
Language: GCC Machine Description
last commit: about 8 years ago
Linked from 1 awesome list
jakobthedev/awesome-devsecopsRelated projects:
| Repository | Description | Stars |
|---|---|---|
| devsecops/wardley-maps | A repository for mapping out strategies to advance security controls in software development | 47 |
 superhedgy/attacksurfacemapper | Automates reconnaissance to identify potential attack surfaces of a target network | 1,324 |
 static-flow/cloudcopy | A tool that enables unauthorized access to domain controllers in the cloud by exploiting their snapshotting capabilities. | 119 |
 sergiomarotco/azure-devops-server-supply-chain-attack-tree | An attack tree model for identifying potential security vulnerabilities in an Azure DevOps Server supply chain. | 7 |
 indeedops/shadowbuster | An attack mapping application that visualizes real-time events and pushes them to the front end via websockets. | 80 |
 reconinfosec/adversary-emulation-map | Creates an interactive visualization of an adversary emulation plan | 16 |
 cybersecurityup/mitre-attack-matrix | A comprehensive resource for understanding and visualizing the relationships between different types of cyber attacks and their tactics, techniques, and procedures. | 18 |
 deepfence/threatmapper | An application protection platform that monitors and analyzes cloud-native applications for vulnerabilities and threats. | 4,861 |
 nshalabi/attack-tools | Utilities for simulating adversary behavior in the context of threat intelligence and security analysis | 1,011 |
| deepfence/yarahunter | Automated malware scanning tool for containers and filesystems using YARA ruleset | 1,275 |
 step-security/github-actions-goat | An educational project demonstrating common security attacks and vulnerabilities in GitHub Actions CI/CD environments | 445 |
 ramen0x3f/aggressorscripts | A collection of scripts for auditing and monitoring computer systems to detect unauthorized access | 272 |
 opencybersecurityalliance/kestrel-lang | A language and runtime framework for building reusable, composable threat hunting workflows using Python. | 302 |
 cycodelabs/raven | Analyzes potential security vulnerabilities in Continuous Integration/Continuous Deployment workflows and repositories. | 634 |
 arvanaghi/checkplease | A collection of sandbox evasion modules written in various programming languages. | 904 |