aparsons/bag-of-holding aparsons/bag-of-holding

  • Stars
    star
    134
  • Rank 269,443 (Top 6 %)
  • Language
    Python
  • License
    Other
  • Created over 9 years ago
  • Updated over 3 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
aparsons/bag-of-holding
github

aparsons

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

An application to assist in the organization and prioritization of software security activities.

Bag of Holding

The Bag of Holding is an application to assist in the organization and prioritization of software security activities.

Check out these talks which cover building your own AppSec pipeline:

Releases

For information about what's new as well as known issues, see RELEASES.md

Development Setup

For information on setting up a development environment, see INSTALL.md.

Docker Startup

Build and start the container

docker build -t bag-of-holding .
docker run -d -p 8000:8000 --name boh-server bag-of-holding:latest

Create super-user

docker exec -it boh-server sh
python3 /bag-of-holding/project/manage.py createsuperuser

Commands

ThreadFix

The following command will retrieve the latest metrics from ThreadFix for connected applications. We recommend this be run daily as a Cron job.

python manage.py cron --threadfix

License

More Repositories

1

Veracode

A collection of scripts to interact with Veracode's API
Shell
16
star
2

SQLDump

Command line utility to execute SQL queries and export results to a CSV file.
Java
5
star
3

vagrant-skipfish

Provision a Skipfish web application security scanner virtual machine using Vagrant
C
4
star
4

threadfix_api

A Python API wrapper to facilitate interactions with ThreadFix.
Python
3
star
5

maven-repository

A personal maven repository for artifacts not tracked in a central repository.
3
star
6

st2appsec

Experimental
1
star
7

SequenceFinder

A proof-of-concept solution to a online shortest-path programming puzzle
Java
1
star