Alternatives and similar repositories for auditree-arboretum

Users that are interested in auditree-arboretum are comparing it to the libraries listed below

• ComplianceAsCode / auditree-framework
  The Auditree framework tool to run compliance control checks as unit tests.
  ☆73Updated last year
• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆43Updated last year
• niyonmaruz / fluent-plugin-osquery
  osquery input plugin
  ☆10Updated 7 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• oscal-compass / compliance-trestle-demos
  Demo setup for compliance-trestle
  ☆35Updated 2 weeks ago
• GoogleCloudPlatform / inspec-gcp-pci-profile
  GCP PCI-DSS 3.2.1 InSpec Profile
  ☆18Updated 4 years ago
• square / spiffe-aws-assume-role
  This tool allows using a SPIFFE JWT to authenticate to AWS APIs
  ☆35Updated 3 weeks ago
• hexa-org / policy-orchestrator
  Hexa Policy Orchestrator enables you to manage all of your access policies consistently across software providers.
  ☆104Updated 7 months ago
• dolevf / Open-Policy-Agent-Alfred
  Reasonably Usable Self-hosted Version of OPA's Playground
  ☆36Updated 7 months ago
• rode / rode-legacy
  cloud native software supply chain ☁️🔗
  ☆65Updated 4 years ago
• opencontrol / schemas
  YAML schema, examples, and validators for OpenControl format.
  ☆76Updated 6 years ago
• in-toto / community
  in-toto is a framework to secure the software supply chain.
  ☆71Updated 3 weeks ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆45Updated 2 years ago
• oscal-compass / compliance-to-policy
  Compliance-to-Policy (C2P) provides the framework to bridge the gap between compliance and policy administration.
  ☆35Updated 8 months ago
• marco-lancini / cartography-queries
  Utilities for programmatic analysis of Cartography data.
  ☆40Updated 3 weeks ago
• darkbitio / tools
  Darkbit Cloud Security Tools
  ☆25Updated 5 years ago
• GoogleCloudPlatform / config-validator
  Golang library which provides functionality to evaluate GCP resources against Rego-based policies
  ☆47Updated 3 weeks ago
• influxdata / terraform-google-influx
  Reusable infrastructure modules for running TICK stack on GCP
  ☆20Updated last month
• GoogleCloudPlatform / gke-application-security-demo
  This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engi…
  ☆71Updated last year
• perlogix / cmon
  NIST Information Security Continuous Monitoring (ISCM) and configuration baseline data collector
  ☆16Updated 2 years ago
• zoom / viss
  ☆62Updated last year
• finos / compliant-financial-infrastructure
  Compliant Financial Infrastructure accelerates the development, deployment and adoption of cloud services in a way that adheres to common…
  ☆146Updated 4 months ago
• HewlettPackard / galadriel
  SPIFFE Federation the easy way
  ☆21Updated 8 months ago
• tokenetes / tokenetes
  Transaction Tokens Service
  ☆52Updated last month
• grafeas / voucher
  🎟 Voucher creates attestations for Binary Authorization
  ☆74Updated 3 weeks ago
• falcosecurity-retire / kubernetes-response-engine
  ☆37Updated 5 years ago
• OpenSCAP / oval-graph
  Understand OVAL results in a blink of an eye
  ☆35Updated 3 years ago
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆90Updated last month
• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆223Updated last week
• GovReady / compliancelib-python
  Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework
  ☆63Updated 5 years ago