CloudSecurityAlliance / continuous-audit-metrics
Continuous Audit Metrics
☆26Updated 11 months ago
Alternatives and similar repositories for continuous-audit-metrics:
Users that are interested in continuous-audit-metrics are comparing it to the libraries listed below
- Various deployments of the OSCAL editor☆46Updated 9 months ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆53Updated last year
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆49Updated last month
- A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…☆58Updated last year
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆163Updated 2 weeks ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆43Updated 5 years ago
- An initial OpenAPI definition of an OSCAL REST API.☆39Updated 7 months ago
- A simple open source command line tool to support common operations over OSCAL content.☆48Updated 10 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- ☆16Updated 2 years ago
- Implementation of the OSCAL REST API☆19Updated last year
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆62Updated 4 years ago
- Tools for the OSCAL project☆36Updated 2 years ago
- OWASP Foundation Web Respository☆23Updated 2 months ago
- ☆36Updated last year
- FedRAMP Automation☆327Updated 3 weeks ago
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆184Updated this week
- Controls Assessment Specification☆69Updated last month
- Stakeholder-Specific Vulnerability Categorization☆147Updated 3 weeks ago
- ☆102Updated last week
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆50Updated last week
- Threat Modeling Manifesto☆28Updated 9 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆172Updated 5 months ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆71Updated 6 months ago
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆84Updated 11 months ago
- ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆153Updated last year
- A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting e…☆40Updated last month
- A collection of awesome security controls mapping for solutions across frameworks.☆56Updated 4 years ago
- Automatically generated diagrams for OSCAL models☆18Updated 3 years ago
- Scripts to import OSCAL example content into the Neo4J graph database☆28Updated 2 years ago