CloudSecurityAlliance / continuous-audit-metricsLinks
Continuous Audit Metrics
☆27Updated last year
Alternatives and similar repositories for continuous-audit-metrics
Users that are interested in continuous-audit-metrics are comparing it to the libraries listed below
Sorting:
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆132Updated last week
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆175Updated 2 months ago
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆390Updated last year
- Built-in Panther detection rules and policies☆420Updated this week
- ☆393Updated last year
- FedRAMP Automation☆343Updated 5 months ago
- OWASP Foundation Web Respository☆25Updated last month
- ☆16Updated 2 years ago
- Various deployments of the OSCAL editor☆46Updated last year
- Graph-based security analysis for everyone☆350Updated last year
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆63Updated 5 years ago
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆322Updated last year
- A repository containing OSCAL serializations of the CIS Critical Security Controls☆55Updated 5 months ago
- NIST SP 800-53 content and other OSCAL content examples☆375Updated last week
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆176Updated 9 months ago
- A simple threat modeling tool to help humans to reduce time-to-value when threat modeling☆615Updated this week
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆284Updated last year
- Convert cloudtrail data to MITRE ATT&CK Sightings☆80Updated 3 years ago
- Open Cloud Security Posture Management Engine☆342Updated 3 years ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆209Updated this week
- CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence☆85Updated last year
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆72Updated 10 months ago
- Repository for the Open Information Security Risk Universe☆64Updated 3 years ago
- Cloud Commotion intends to cause chaos to simulate security incidents☆145Updated last year
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆204Updated this week
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆355Updated 3 months ago
- ☆374Updated last year
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆191Updated last year
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated 2 years ago
- The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.☆108Updated last year