CloudSecurityAlliance / continuous-audit-metricsLinks
Continuous Audit Metrics
☆27Updated last year
Alternatives and similar repositories for continuous-audit-metrics
Users that are interested in continuous-audit-metrics are comparing it to the libraries listed below
Sorting:
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆173Updated last month
- FedRAMP Automation☆342Updated 4 months ago
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆387Updated last year
- Various deployments of the OSCAL editor☆46Updated last year
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆132Updated this week
- NIST SP 800-53 content and other OSCAL content examples☆370Updated last week
- ☆392Updated last year
- ☆16Updated 2 years ago
- Built-in Panther detection rules and policies☆410Updated last week
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆108Updated last year
- Graph-based security analysis for everyone☆349Updated last year
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆72Updated 10 months ago
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆320Updated last year
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆63Updated 5 years ago
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆54Updated 5 months ago
- Open Security Controls Assessment Language (OSCAL)☆770Updated this week
- NIST CyberSecurity Framework management tool☆166Updated 3 years ago
- Open Cloud Security Posture Management Engine☆342Updated 3 years ago
- The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…☆161Updated last week
- A simple open source command line tool to support common operations over OSCAL content.☆53Updated 2 weeks ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆191Updated 11 months ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆200Updated last week
- A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…☆60Updated last year
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆601Updated last week
- OWASP Foundation Web Respository☆25Updated last month
- Controls Assessment Specification☆70Updated 4 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- Stakeholder-Specific Vulnerability Categorization☆159Updated last week
- Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆157Updated last year
- An initial OpenAPI definition of an OSCAL REST API.☆39Updated 11 months ago