Alternatives and similar repositories for xCOMPASS

Users that are interested in xCOMPASS are comparing it to the libraries listed below

• usnistgov / PrivacyFrmwkResources
  This repository contains resources to support organizations’ use of the Privacy Framework. Resources include crosswalks, Profiles, guidel…
  ☆55Updated last year
• adamshostack / DFD3
  ☆84Updated 9 months ago
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆54Updated 4 months ago
• OWASP / OpenCRE
  ☆120Updated last week
• adamshostack / eop
  The Elevation of Privilege Threat Modeling Game
  ☆334Updated last year
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆171Updated last month
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆44Updated 5 years ago
• cairis-platform / cairis
  Computer Aided Integration of Requirements and Information Security - Server
  ☆164Updated 11 months ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• EasyDynamics / oscal-editor-deployment
  Various deployments of the OSCAL editor
  ☆46Updated last year
• Deploying-Securely / DSRAM
  ☆16Updated 2 years ago
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆158Updated this week
• stfbk / PILLAR
  An AI-Powered Privacy Threat Modeling tool based on the LINDDUN framework by leveraging Large Language Models.
  ☆20Updated 2 weeks ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated last week
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆174Updated 8 months ago
• OWASP / www-project-threat-and-safeguard-matrix
  OWASP Foundation Web Respository
  ☆25Updated 3 weeks ago
• ossf / wg-supply-chain-integrity
  Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …
  ☆186Updated last year
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆44Updated 11 months ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 4 months ago
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆82Updated last week
• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆200Updated this week
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆52Updated 2 weeks ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆28Updated last year
• usnistgov / vulntology
  Development of the NIST vulnerability data ontology (Vulntology).
  ☆41Updated this week
• Optum / ChaoSlingr
  ChaoSlingr: Introducing Security into Chaos Testing
  ☆68Updated 6 years ago
• magoo / risk-measurement
  read the docs version of risk management
  ☆26Updated 2 years ago
• trevorbryant / awesome-controls
  A collection of awesome security controls mapping for solutions across frameworks.
  ☆56Updated 5 years ago
• rpetrich / deciduous
  App that simplifies building decision trees to model adverse scenarios
  ☆216Updated last year
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆28Updated 2 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆149Updated 4 months ago