Comcast / xCompass
This repository hosts a persona based privacy threat modeling solution called Models of Applied Privacy or MAP.
☆16Updated last week
Related projects: ⓘ
- AI/ML applications have unique security threats. Project GuardRail is a set of security and privacy requirements that AI/ML applications …☆20Updated 6 months ago
- An open source Governance Risk Compliance (GRC) solution for corporates and government☆25Updated 7 years ago
- Posture Attribute Collection and Evaluation☆23Updated last year
- OWASP Foundation Web Respository☆26Updated last year
- Exploit Prediction Scoring System (EPSS)☆20Updated 2 years ago
- Threat Modeling Manifesto☆24Updated 2 months ago
- Explore AI Supply Chain Risk with the AI Risk Database☆44Updated 4 months ago
- Kestrel Jupyter Notebook Kernel☆9Updated 11 months ago
- DLT-Security-Framework☆18Updated 3 years ago
- Decision trees generated via Graphviz to inform pragmatic threat modelling.☆10Updated 3 years ago
- OWASP Ontology-driven Threat Modelling framework☆35Updated last year
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆47Updated this week
- Tools for security content automation, baseline tailoring, and overlay development.☆42Updated 3 weeks ago
- Information relating to the governance of the Open Cybersecurity Alliance (OCA) OASIS Open Project. https://github.com/opencybersecuritya…☆22Updated last week
- This repository contains resources to support organizations’ use of the Privacy Framework. Resources include crosswalks, Profiles, guidel…☆46Updated last month
- Scripts to import OSCAL example content into the Neo4J graph database☆27Updated last year
- ☆14Updated 2 years ago
- OCSF Schema WEB Server☆39Updated last month
- read the docs version of risk management☆23Updated last year
- OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…☆23Updated 2 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆53Updated 8 months ago
- hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.☆22Updated 2 years ago
- CVSS v4.0 calculator☆21Updated last month
- A collection of dashboards, templates, API's and Power BI code for vulnerability management and analysis☆12Updated 3 weeks ago
- XML metadata for NIST Technical Series Publications☆21Updated last week
- Automated process to build and distribute Posture & Exposure Reports' bi-weekly to customers.☆17Updated 7 months ago
- This repository contains Enablement Documentation (STIX Shifter), Workgroup documents and materials (Endpoint), Working documents and ou…☆33Updated this week
- Open Threat Modeling Template☆48Updated 2 months ago
- DefectDojo Community Content☆17Updated 5 months ago
- A mirror of ISM OSCAL documents. The authoritative source can be found at https://www.cyber.gov.au/ism/oscal.☆15Updated 3 months ago