Alternatives and similar repositories for auditree-framework

Users that are interested in auditree-framework are comparing it to the libraries listed below

• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆44Updated last year
• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆229Updated last week
• marco-lancini / cartography-queries
  Utilities for programmatic analysis of Cartography data.
  ☆40Updated this week
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆55Updated last month
• ComplianceAsCode / auditree-arboretum
  The Auditree common fetchers, checks and harvest reports library.
  ☆20Updated 2 years ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆22Updated 2 years ago
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆31Updated 3 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆39Updated 5 years ago
• CivicActions / ssp-toolkit
  Automate the creation of a System Security Plan (SSP)
  ☆46Updated last week
• oscal-compass / compliance-trestle-demos
  Demo setup for compliance-trestle
  ☆37Updated last week
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆47Updated 6 years ago
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆56Updated 4 months ago
• oscal-compass / compliance-to-policy
  Compliance-to-Policy (C2P) provides the framework to bridge the gap between compliance and policy administration.
  ☆36Updated 2 weeks ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated 3 months ago
• opencontrol / schemas
  YAML schema, examples, and validators for OpenControl format.
  ☆76Updated 6 years ago
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆204Updated last year
• privateerproj / privateer
  Privateer is a plugin-based framework to validate the status of deployed resources.
  ☆17Updated this week
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆16Updated 2 years ago
• chughes29 / DoD-Federal-Government-Cloud-Computing-Resources
  A collection of DoD and Federal Government Cloud Computing Resources
  ☆49Updated 4 years ago
• kindlyops / havengrc
  ☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
  ☆103Updated 4 years ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆37Updated 2 years ago
• mitre / inspec_tools
  A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results…
  ☆94Updated last year
• ScaleSec / project_lockdown
  GCP Auto Remediation Suite for High Risk Events
  ☆43Updated 4 years ago
• chainguard-sandbox / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆74Updated last year
• google / localtoast
  ☆115Updated 5 months ago
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆47Updated 9 years ago
• mitre / heimdall2
  Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.
  ☆246Updated last week
• GovReady / compliancelib-python
  Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework
  ☆63Updated 5 years ago
• JupiterOne / insights-dashboards
  A library of data visualization dashboard templates that can be imported into JupiterOne.
  ☆18Updated last month
• chainguard-dev / github-audit-alerter
  Slack alert bot for matching Github Audit Events
  ☆10Updated last year