Alternatives and similar repositories for continuous-audit-metrics

Users that are interested in continuous-audit-metrics are comparing it to the libraries listed below

• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆52Updated 2 months ago
• EasyDynamics / oscal-editor-deployment
  Various deployments of the OSCAL editor
  ☆46Updated 10 months ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆43Updated 5 years ago
• awslabs / security-hub-compliance-analyzer
  A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting e…
  ☆42Updated 3 weeks ago
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆28Updated 2 years ago
• usnistgov / oscal-cli
  A simple open source command line tool to support common operations over OSCAL content.
  ☆49Updated 11 months ago
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆166Updated last month
• Deploying-Securely / DSRAM
  ☆16Updated 2 years ago
• EasyDynamics / oscal-react-library
  A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…
  ☆59Updated last year
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆39Updated 2 weeks ago
• EasyDynamics / oscal-rest
  An initial OpenAPI definition of an OSCAL REST API.
  ☆39Updated 8 months ago
• OWASP / www-project-threat-and-safeguard-matrix
  OWASP Foundation Web Respository
  ☆23Updated 3 months ago
• CrowdStrike / cloud-resource-estimator
  Cloud deployment size calculation utilities
  ☆20Updated last week
• EasyDynamics / oscal-rest-service
  Implementation of the OSCAL REST API
  ☆19Updated last year
• GSA / threat-analysis
  ☆15Updated 3 years ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆36Updated 2 years ago
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆80Updated 2 years ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆62Updated 4 years ago
• GSA / automate.fedramp.gov
  ☆14Updated 3 weeks ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated last month
• OWASP / OpenCRE
  ☆106Updated this week
• trustoncloud / threatmodel-for-aws-s3
  ThreatModel for Amazon S3 - Library of all the attack scenarios on Amazon S3, and how to mitigate them following a risk-based approach
  ☆153Updated last year
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆53Updated last year
• GSA / fedramp-automation
  FedRAMP Automation
  ☆332Updated last month
• cyght-io / oscal-diagrams
  Automatically generated diagrams for OSCAL models
  ☆20Updated 3 years ago
• GSA / oscal-gen-tool
  ☆16Updated 3 years ago
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆58Updated last year
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 9 months ago
• Coalfire-CF / Coalfire-AWS-RAMPpak
  Coalfire AWS RAMP/pak Reference Architecture
  ☆36Updated 9 months ago
• usnistgov / oscal-deep-diff
  Open Security Controls Assessment Language (OSCAL) Deep Differencing Tool
  ☆35Updated last year