CloudSecurityAlliance / Glossary

Related projects: ⓘ

• CloudSecurityAlliance / DLT-Security-Framework
  DLT-Security-Framework
  ☆18Updated 3 years ago
• cloudsecurityalliance / gsd-project
  Global Security Database Project
  ☆28Updated last year
• OWASP / www-project-appsec-pipeline
  OWASP Foundation Web Respository
  ☆10Updated last year
• CloudSecurityAlliance / continuous-audit-metrics
  Continuous Audit Metrics
  ☆24Updated 3 months ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆41Updated 9 months ago
• CivicActions / oscal-component-definitions
  OSCAL reusable component definitions library
  ☆10Updated 4 months ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆24Updated 2 months ago
• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 2 years ago
• EasyDynamics / oscal-rest-service
  Implementation of the OSCAL REST API
  ☆19Updated 6 months ago
• cyght-io / oscal-diagrams
  Automatically generated diagrams for OSCAL models
  ☆15Updated 2 years ago
• GSA / threat-analysis
  ☆14Updated 2 years ago
• cloudsecurityalliance / wg-DevSecOps
  DevSecOps Working Group
  ☆12Updated 4 years ago
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆48Updated last year
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆25Updated this week
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 4 months ago
• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆36Updated 4 months ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated last year
• mitre / emasser
  eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…
  ☆30Updated 11 months ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆42Updated 4 years ago
• Risk-Assessment-Framework / RiskAssessmentFramework
  The Secure Coding Framework
  ☆19Updated 4 years ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆34Updated last month
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆10Updated 3 years ago
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆47Updated this week
• mitre / vulcan
  A web application to streamline the development of STIGs from SRGs
  ☆60Updated last month
• FIRSTdotorg / vrdx-sig-vxref-wip
  ☆7Updated 5 years ago
• usnistgov / OSCAL-DEFINE
  Develop Enhancements, Future Implementations and New Education
  ☆12Updated 9 months ago
• mitre / mitre-saf
  Landing Page Content/Builder for MITRE Security Automation Framework
  ☆27Updated last week
• GovReady / hyperGRC
  hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.
  ☆22Updated 2 years ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated 6 months ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆34Updated last year