Alternatives and similar repositories for auditree-arboretum

Users that are interested in auditree-arboretum are comparing it to the libraries listed below

• ComplianceAsCode / auditree-framework
  The Auditree framework tool to run compliance control checks as unit tests.
  ☆71Updated last year
• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆42Updated 11 months ago
• niyonmaruz / fluent-plugin-osquery
  osquery input plugin
  ☆10Updated 6 years ago
• square / spiffe-aws-assume-role
  This tool allows using a SPIFFE JWT to authenticate to AWS APIs
  ☆34Updated 2 months ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• finos / compliant-financial-infrastructure
  Compliant Financial Infrastructure accelerates the development, deployment and adoption of cloud services in a way that adheres to common…
  ☆142Updated 3 weeks ago
• GoogleCloudPlatform / inspec-gcp-pci-profile
  GCP PCI-DSS 3.2.1 InSpec Profile
  ☆18Updated 4 years ago
• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆205Updated this week
• grafeas / voucher
  🎟 Voucher creates attestations for Binary Authorization
  ☆74Updated 2 weeks ago
• oscal-compass / compliance-to-policy
  Compliance-to-Policy (C2P) provides the framework to bridge the gap between compliance and policy administration.
  ☆31Updated 5 months ago
• in-toto / community
  in-toto is a framework to secure the software supply chain.
  ☆71Updated 8 months ago
• oscal-compass / compliance-trestle-demos
  Demo setup for compliance-trestle
  ☆35Updated this week
• darkbitio / tools
  Darkbit Cloud Security Tools
  ☆25Updated 4 years ago
• opencontrol / fedramp-templater
  EXPERIMENTAL: a template builder for FedRAMP System Security Plans
  ☆39Updated 5 years ago
• hexa-org / policy-orchestrator
  Hexa Policy Orchestrator enables you to manage all of your access policies consistently across software providers.
  ☆103Updated 3 months ago
• falcosecurity-retire / kubernetes-response-engine
  ☆37Updated 4 years ago
• forseti-security / forseti-visualizer
  ☆80Updated 2 years ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆45Updated 2 years ago
• dolevf / Open-Policy-Agent-Alfred
  Reasonably Usable Self-hosted Version of OPA's Playground
  ☆36Updated 3 months ago
• GoogleCloudPlatform / terraform-google-network-forensics
  Deploys Zeek on Google Cloud
  ☆25Updated 3 weeks ago
• GovReady / compliancelib-python
  Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework
  ☆62Updated 5 years ago
• opencontrol / schemas
  YAML schema, examples, and validators for OpenControl format.
  ☆75Updated 6 years ago
• sysdiglabs / terraform-provider-sysdig
  Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.
  ☆54Updated last month
• octarinesec / kccss
  Kubernetes Common Configuration Scoring System
  ☆123Updated 3 years ago
• SBOMit / specification
  ☆65Updated last year
• ScaleSec / project_lockdown
  GCP Auto Remediation Suite for High Risk Events
  ☆43Updated 4 years ago
• in-toto / demo
  Securing Alice's, Bob's and Carl's software supply chain using in-toto
  ☆95Updated last week
• plus3it / amigen7
  Set of tools to provide automation of tasks for creating STIG-partitioned EL7 AMIs
  ☆34Updated last year
• Netflix-Skunkworks / skunky
  Marking instances dirty since 2018
  ☆47Updated 6 years ago
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆194Updated 9 months ago