The Auditree framework tool to run compliance control checks as unit tests.
☆73Aug 20, 2024Updated last year
Alternatives and similar repositories for auditree-framework
Users that are interested in auditree-framework are comparing it to the libraries listed below
Sorting:
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆239Updated this week
- Open source tool for processing OSCAL based FedRAMP SSPs☆44Oct 14, 2024Updated last year
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆104Jun 14, 2021Updated 4 years ago
- Compliance-to-Policy (C2P) provides the framework to bridge the gap between compliance and policy administration.☆39Jan 20, 2026Updated 2 months ago
- Compliance content for Red Hat, Inc.☆91Oct 19, 2021Updated 4 years ago
- Measure release insights and recommendations for open-source dependencies. Note: this project is archived.☆10Jan 3, 2023Updated 3 years ago
- FedRAMP Automation☆16Nov 10, 2023Updated 2 years ago
- An open source, self-service GRC tool to automate security assessments and compliance.☆208Dec 10, 2024Updated last year
- A workflow automation tool for compliance content authoring☆22Mar 13, 2026Updated last week
- ☆19Oct 19, 2021Updated 4 years ago
- ☆48Feb 22, 2023Updated 3 years ago
- Scripts to import OSCAL example content into the Neo4J graph database☆33Jan 28, 2023Updated 3 years ago
- Repository for the generation of OSCAL data types☆28Mar 13, 2026Updated last week
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆49Feb 5, 2020Updated 6 years ago
- AWS IAM Permissions Guardrails https://aws-samples.github.io/aws-iam-permissions-guardrails/☆127Apr 17, 2023Updated 2 years ago
- git terraform job to configure Gitlab JWT Auth☆12Oct 10, 2024Updated last year
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆213Jun 25, 2025Updated 8 months ago
- ☆19Jul 28, 2025Updated 7 months ago
- A Mongo-based version of Heimdall (Deprecated)☆11May 1, 2019Updated 6 years ago
- Privateer is a plugin-based framework for security & compliance evaluations.☆18Updated this week
- Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework☆63Apr 15, 2020Updated 5 years ago
- InSpec profile for Microsoft Windows 10, against DISA's Microsoft Windows 10 Security Technical Implementation Guide (STIG) Version 1, Re…☆15Jan 9, 2025Updated last year
- Controls for Amazon Web Services☆26Nov 30, 2019Updated 6 years ago
- How to deploy EKS Clusters with the Terraform EKS Blueprints and GitHub Actions Workflows☆22Mar 2, 2026Updated 2 weeks ago
- A place for policy work group related proposals and prototypes.☆65May 21, 2025Updated 10 months ago
- A cuelang testing package☆13Apr 10, 2022Updated 3 years ago
- User manager for Samba, which uses Samba Python bindings. Allows to perform all the operations of user and group management☆11Oct 29, 2024Updated last year
- Dockerized Eramba, Open Source Governance, Risk & Compliance (GRC) system https://hub.docker.com/r/digitorus/er…☆31Nov 16, 2019Updated 6 years ago
- Documentation and resources for Cilium Installfest☆13Sep 23, 2022Updated 3 years ago
- ☆12Jan 14, 2025Updated last year
- Security automation content in SCAP, Bash, Ansible, and other formats☆2,674Updated this week
- This project provides a solution to AWS customers for reporting on what tags exists, the resources they are applied to, and what resource…☆25Feb 28, 2024Updated 2 years ago
- NIST SP 800-53 content and other OSCAL content examples☆423Updated this week
- The ImageMagick Security Policy Evaluator allows developers and security experts to check if an XML Security Policy is hardened against a…☆19Feb 6, 2023Updated 3 years ago
- re-hosted web identiy course from opensecuritytraining.info☆11Nov 7, 2025Updated 4 months ago
- AWS tools and snippets☆15Dec 30, 2022Updated 3 years ago
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Apr 18, 2020Updated 5 years ago
- Operator providing Kubernetes cluster compliance checks☆52Updated this week
- Repo to hold the markdown-ified metadata on AppSec tools that are automation-friendly☆12Jun 13, 2016Updated 9 years ago