OWASP / Riskassessmentframework
Licence: mit
The Secure Coding Framework
Stars: ✭ 201
Programming Languages
typescript
32286 projects
Labels
Projects that are alternatives of or similar to Riskassessmentframework
Devsecops
This repository contains information about DevSecOps and how to get involved in this community effort.
Stars: ✭ 103 (-48.76%)
Mutual labels: devsecops
Terrascan
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Stars: ✭ 2,687 (+1236.82%)
Mutual labels: devsecops
Awesome Devsecops Russia
Awesome DevSecOps на русском языке
Stars: ✭ 133 (-33.83%)
Mutual labels: devsecops
Bunkerized Nginx
🛡️ Make your web services secure by default !
Stars: ✭ 2,361 (+1074.63%)
Mutual labels: devsecops
Purify
All-in-one tool for managing vulnerability reports from AppSec pipelines
Stars: ✭ 72 (-64.18%)
Mutual labels: devsecops
Checkov
Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
Stars: ✭ 3,572 (+1677.11%)
Mutual labels: devsecops
Nodejsscan
nodejsscan is a static security code scanner for Node.js applications.
Stars: ✭ 1,874 (+832.34%)
Mutual labels: devsecops
Threatplaybook
A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration
Stars: ✭ 173 (-13.93%)
Mutual labels: devsecops
Njsscan
njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.
Stars: ✭ 128 (-36.32%)
Mutual labels: devsecops
Archerysec
Centralize Vulnerability Assessment and Management for DevSecOps Team
Stars: ✭ 1,802 (+796.52%)
Mutual labels: devsecops
Devsecops
🔱 Collection and Roadmap for everyone who wants DevSecOps.
Stars: ✭ 171 (-14.93%)
Mutual labels: devsecops
Sbt Dependency Check
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (-6.97%)
Mutual labels: devsecops
Mobile Security Framework Mobsf
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Stars: ✭ 10,212 (+4980.6%)
Mutual labels: devsecops
Awesome Devsecops
Curating the best DevSecOps resources and tooling.
Stars: ✭ 188 (-6.47%)
Mutual labels: devsecops
Docker Security Images
🔐 Docker Container for Penetration Testing & Security
Stars: ✭ 172 (-14.43%)
Mutual labels: devsecops
The OWASP Risk Assessment Framework
The OWASP Risk Assessment Framework consist of Static application security testing and Risk Assessment tools. By using OWASP Risk Assessment Framework's Static Appilication Security Testing tool Testers will be able to analyse and review their code quality and vulnerabilities without any additional setup. OWASP Risk Assessment Framework can be integrated in the DevSecOps toolchain to help developers to write and produce secure code.
features
- Static Application security Testing
Static Application security Testing (Under Develoment)
- For more detailed information, refer to the user guide
Demo RAF SAST Tool
Contribute
- Wanna contribute this project dm me via twitter @johnleedik
- For new contributor see our TODO and Requirement
Project Lead
- Ade Yoseman Putra (@adeyosemanputra)
Join Our Telegram Channel
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].