Comcast / xCompass

Related projects: ⓘ

• Comcast / ProjectGuardRail
  AI/ML applications have unique security threats. Project GuardRail is a set of security and privacy requirements that AI/ML applications …
  ☆20Updated 6 months ago
• riski-io / grc
  An open source Governance Risk Compliance (GRC) solution for corporates and government
  ☆25Updated 7 years ago
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated last year
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆26Updated last year
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆20Updated 2 years ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆24Updated 2 months ago
• mitre-atlas / ai-risk-database
  Explore AI Supply Chain Risk with the AI Risk Database
  ☆44Updated 4 months ago
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated 11 months ago
• CloudSecurityAlliance / DLT-Security-Framework
  DLT-Security-Framework
  ☆18Updated 3 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆10Updated 3 years ago
• OWASP / OdTM
  OWASP Ontology-driven Threat Modelling framework
  ☆35Updated last year
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆47Updated this week
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆42Updated 3 weeks ago
• opencybersecurityalliance / oasis-open-project
  Information relating to the governance of the Open Cybersecurity Alliance (OCA) OASIS Open Project. https://github.com/opencybersecuritya…
  ☆22Updated last week
• usnistgov / PrivacyFrmwkResources
  This repository contains resources to support organizations’ use of the Privacy Framework. Resources include crosswalks, Profiles, guidel…
  ☆46Updated last month
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆27Updated last year
• GSA / threat-analysis
  ☆14Updated 2 years ago
• ocsf / ocsf-server
  OCSF Schema WEB Server
  ☆39Updated last month
• magoo / risk-measurement
  read the docs version of risk management
  ☆23Updated last year
• oasis-open / csaf-parser
  OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…
  ☆23Updated 2 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆53Updated 8 months ago
• GovReady / hyperGRC
  hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.
  ☆22Updated 2 years ago
• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆21Updated last month
• SecurityBagel / VulnBagel
  A collection of dashboards, templates, API's and Power BI code for vulnerability management and analysis
  ☆12Updated 3 weeks ago
• usnistgov / NIST-Tech-Pubs
  XML metadata for NIST Technical Series Publications
  ☆21Updated last week
• cisagov / pe-reports
  Automated process to build and distribute Posture & Exposure Reports' bi-weekly to customers.
  ☆17Updated 7 months ago
• opencybersecurityalliance / documentation
  This repository contains Enablement Documentation (STIX Shifter), Workgroup documents and materials (Endpoint), Working documents and ou…
  ☆33Updated this week
• matthiasrohr / OTMT
  Open Threat Modeling Template
  ☆48Updated 2 months ago
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated 5 months ago
• AustralianCyberSecurityCentre / ism-oscal
  A mirror of ISM OSCAL documents. The authoritative source can be found at https://www.cyber.gov.au/ism/oscal.
  ☆15Updated 3 months ago