Alternatives and similar repositories for xCOMPASS

Users that are interested in xCOMPASS are comparing it to the libraries listed below

• adamshostack / DFD3
  ☆89Updated 3 months ago
• OWASP / OpenCRE
  ☆131Updated last month
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆166Updated this week
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆178Updated last week
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆52Updated 3 weeks ago
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆57Updated 8 months ago
• adamshostack / eop
  The Elevation of Privilege Threat Modeling Game
  ☆339Updated last year
• cairis-platform / cairis
  Computer Aided Integration of Requirements and Information Security - Server
  ☆166Updated last month
• OWASP / www-project-threat-and-safeguard-matrix
  OWASP Foundation Web Respository
  ☆26Updated this week
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆84Updated 2 weeks ago
• mikeprivette / ai-security-shared-responsibility
  AI Security Shared Responsibility Model
  ☆85Updated 2 months ago
• Deploying-Securely / DSRAM
  ☆16Updated 2 years ago
• stfbk / PILLAR
  An AI-Powered Privacy Threat Modeling tool based on the LINDDUN framework by leveraging Large Language Models.
  ☆23Updated 4 months ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• ossf / wg-supply-chain-integrity
  Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …
  ☆195Updated 2 weeks ago
• rpetrich / deciduous
  App that simplifies building decision trees to model adverse scenarios
  ☆219Updated last year
• IBM / CBOM
  Cryptography Bill of Materials
  ☆85Updated 3 months ago
• Hive-Systems / pyfair
  Factor Analysis of Information Risk (FAIR) model written in Python. Managed and maintained by Hive Systems
  ☆103Updated this week
• OWASP / www-project-integration-standards
  OWASP Foundation Web Respository
  ☆28Updated this week
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated last month
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆211Updated last month
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆196Updated 5 months ago
• ossf / s2c2f
  The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…
  ☆221Updated 6 months ago
• owaspsamm / core
  Core model including reused documentation
  ☆99Updated 6 months ago
• usnistgov / oscal-cli
  A simple open source command line tool to support common operations over OSCAL content.
  ☆57Updated last week
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆29Updated 2 years ago
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆201Updated last week
• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆220Updated last week
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 8 months ago
• ocsf / ocsf-docs
  OCSF Documentation
  ☆145Updated 2 months ago