CloudSecurityAlliance / continuous-audit-metricsLinks
Continuous Audit Metrics
☆27Updated last year
Alternatives and similar repositories for continuous-audit-metrics
Users that are interested in continuous-audit-metrics are comparing it to the libraries listed below
Sorting:
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆389Updated last year
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆144Updated last month
- FedRAMP Automation☆355Updated 9 months ago
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆63Updated 5 years ago
- ☆401Updated 2 years ago
- Built-in Panther detection rules and policies☆436Updated this week
- Various deployments of the OSCAL editor☆48Updated last year
- Open-source GRC platform for modern security teams. Manage compliance (SOC 2, ISO 27001, HIPAA), risk registers, vendor assessments, and …☆67Updated this week
- NIST SP 800-53 content and other OSCAL content examples☆412Updated last week
- ☆16Updated 2 years ago
- ☆374Updated last year
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆204Updated 7 months ago
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆60Updated 10 months ago
- Open Cloud Security Posture Management Engine☆342Updated 3 years ago
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆287Updated 2 years ago
- Controls Assessment Specification☆70Updated 10 months ago
- A collection of projects supporting AWS Integrations☆158Updated 2 months ago
- A python module to allow for easy integration with the Lacework APIs.☆18Updated last year
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆77Updated 3 months ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆110Updated 2 years ago
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆339Updated last month
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆215Updated this week
- The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…☆171Updated this week
- NIST CyberSecurity Framework management tool☆166Updated 4 years ago
- A MITRE ATT&CK Navigator export for AWS GuardDuty Findings☆139Updated 4 years ago
- Threat model for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach☆157Updated 2 years ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆196Updated last year
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆664Updated this week
- Convert cloudtrail data to MITRE ATT&CK Sightings☆82Updated 3 years ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated last year