Alternatives and similar repositories for continuous-audit-metrics

Users that are interested in continuous-audit-metrics are comparing it to the libraries listed below

• center-for-threat-informed-defense / security-stack-mappings
  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…
  ☆389Updated last year
• EasyDynamics / oscal-editor-deployment
  Various deployments of the OSCAL editor
  ☆46Updated last year
• GSA / fedramp-automation
  FedRAMP Automation
  ☆343Updated 5 months ago
• cisotradecraft / Podcast
  This GitHub page shows the CISO Tradecraft Podcast broken down by Topic
  ☆133Updated last week
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆182Updated 3 months ago
• awslabs / aws-automated-incident-response-and-forensics
  ☆395Updated 2 years ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆177Updated 10 months ago
• usnistgov / oscal-content
  NIST SP 800-53 content and other OSCAL content examples
  ☆381Updated last week
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆63Updated 5 years ago
• awslabs / threat-composer
  A simple threat modeling tool to help humans to reduce time-to-value when threat modeling
  ☆621Updated this week
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆55Updated 6 months ago
• edgeroute / security-champion-framework
  The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
  ☆110Updated last year
• adamshostack / DFD3
  ☆88Updated 3 weeks ago
• adamshostack / 4QuestionFrame
  Shostack's 4 Question Frame for Threat Modeling
  ☆141Updated last month
• OpenCSPM / opencspm
  Open Cloud Security Posture Management Engine
  ☆342Updated 3 years ago
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆420Updated this week
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆326Updated last year
• ocsf / ocsf-docs
  OCSF Documentation
  ☆141Updated last week
• geoffrey-hill-tutamantic / rapid-threat-model-prototyping-docs
  This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.
  ☆163Updated 2 years ago
• JupiterOne / starbase
  Graph-based security analysis for everyone
  ☆350Updated last year
• OWASP / OpenCRE
  ☆122Updated 2 weeks ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆192Updated last year
• OWASP / www-project-threat-and-safeguard-matrix
  OWASP Foundation Web Respository
  ☆25Updated 2 months ago
• carlota / showmethemoney
  These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…
  ☆73Updated 11 months ago
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆245Updated 4 years ago
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆209Updated this week
• Deploying-Securely / DSRAM
  ☆16Updated 2 years ago
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆58Updated 2 years ago
• wiz-sec / open-cvdb
  An open project to list all publicly known cloud vulnerabilities and CSP security issues
  ☆361Updated 2 weeks ago
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆164Updated this week