CloudSecurityAlliance / continuous-audit-metricsLinks
Continuous Audit Metrics
β27Updated last year
Alternatives and similar repositories for continuous-audit-metrics
Users that are interested in continuous-audit-metrics are comparing it to the libraries listed below
Sorting:
- π¨ATTENTIONπ¨ The Security Stack Mappings have migrated to the Centerβs Mappings Explorer project. See README below. This repository is kβ¦β389Updated last year
- Various deployments of the OSCAL editorβ46Updated last year
- FedRAMP Automationβ343Updated 5 months ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topicβ133Updated last week
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.β182Updated 3 months ago
- β395Updated 2 years ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.β177Updated 10 months ago
- NIST SP 800-53 content and other OSCAL content examplesβ381Updated last week
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.β63Updated 5 years ago
- A simple threat modeling tool to help humans to reduce time-to-value when threat modelingβ621Updated this week
- A repository containing OSCAL serializations of the CIS Critical Security Controlsβ55Updated 6 months ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.β110Updated last year
- β88Updated 3 weeks ago
- Shostack's 4 Question Frame for Threat Modelingβ141Updated last month
- Open Cloud Security Posture Management Engineβ342Updated 3 years ago
- Built-in Panther detection rules and policiesβ420Updated this week
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.β326Updated last year
- OCSF Documentationβ141Updated last week
- This repository stores content that can be used to design a Rapid Threat Model Prototyping process for a software development group.β163Updated 2 years ago
- Graph-based security analysis for everyoneβ350Updated last year
- β122Updated 2 weeks ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat β¦β192Updated last year
- OWASP Foundation Web Respositoryβ25Updated 2 months ago
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and thβ¦β73Updated 11 months ago
- Segment's Threat Modeling training for our engineersβ245Updated 4 years ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metricsβ209Updated this week
- β16Updated 2 years ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrixβ58Updated 2 years ago
- An open project to list all publicly known cloud vulnerabilities and CSP security issuesβ361Updated 2 weeks ago
- Stakeholder-Specific Vulnerability Categorizationβ164Updated this week