Batfish is a network configuration analysis tool that can find bugs and guarantee the correctness of (planned or current) network configurations. It enables network engineers to rapidly and safely …

A self-hosted Fuzzing-As-A-Service platform

A curated list of awesome GraphQL Security frameworks, libraries, software and resources

NextJS-based single-page application for completing and reviewing SAMM assessments

A Pythonic framework for threat modeling

Templates for the Microsoft Threat Modeling Tool

The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.

A little python framework for building bots and smartapps for eXpress

OWASP Web Application Security Testing Checklist

Go library and CLIs for working with container registries

Docker security analysis & hacking tools

NIST Certified SCAP 1.2 toolkit

Security automation content in SCAP, Bash, Ansible, and other formats