Home
Browse frameworks
Contact us
SAMMY premium
Login
SAMMY UI is optimized for resolutions with a width 1024px and higher.
DSOMM
Browse DSOMM
SAMM
OpenSAMM1.5
ISO 27001 (Deprecated)
Cybersecurity Fundamentals
NIST CSF 2.0
NIST SSDF
NIST 800-34
DSOMM
BSIMM 14
Build and Deployment
Build
Deployment
Patch Management
Culture and Organization
Design
Education and Guidance
Process
Implementation
Application Hardening
Development and Source Code Control
Infrastructure Hardening
Information Gathering
Logging
Monitoring
Test and Verification
Test KPI
Application Tests
Consolidation
Dynamic Depth For Applications
Dynamic Depth For Infrastructure
Static Depth for Applications
Static Depth for Infrastructure
Test Intensity
T-SI-1-1: Test for stored secrets
T-SI-2-1: Test cluster deployment resources
T-SI-2-2: Test for image lifetime
T-SI-2-3: Test of virtualized environments
T-SI-2-4: Test the cloud configuration
T-SI-2-5: Test the definition of virtualized environments
T-SI-3-1: Analyze logs
T-SI-3-2: Test for malware
T-SI-3-3: Test for new image version
T-SI-4-1: Correlate known vulnerabilities in infrastructure with new image versions
T-SI-4-2: Test for known vulnerabilities
T-SI-4-3: Test of infrastructure components for known vulnerabilities
Test for stored secrets
T-SI-1-1: Test for stored secrets
Test for secrets in code, container images and history
Not implemented
Partially implemented
Half implemented
Fully implemented