GoogleCloudPlatform / inspec-gcp-pci-profile
GCP PCI-DSS 3.2.1 InSpec Profile
☆18Updated 3 years ago
Alternatives and similar repositories for inspec-gcp-pci-profile:
Users that are interested in inspec-gcp-pci-profile are comparing it to the libraries listed below
- Deploys Zeek on Google Cloud☆25Updated last month
- GCP Auto Remediation Suite for High Risk Events☆42Updated 3 years ago
- Golang library which provides functionality to evaluate GCP resources against Rego-based policies☆44Updated this week
- Report OPA Gatekeeper audit violations in Security Command Center.☆42Updated 2 months ago
- GKE CIS 1.1.0 Benchmark InSpec Profile☆27Updated 3 years ago
- Slack alert bot for matching Github Audit Events☆10Updated 3 months ago
- Cloud Security Posture security policies☆29Updated 5 months ago
- Be notified in the event of a new GCP Organization Policy being released.☆25Updated last month
- This repository includes cloud security policies for IaC and live resources.☆39Updated 8 months ago
- Run builds across all machine types in Cloud Build to find the optimal price/performance tradeoff☆11Updated 3 years ago
- Heimdall Lite 2.0 is a JavaScript based security results viewer and review tool supporting multiple security results formats, such as: In…☆21Updated 3 years ago
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆21Updated last year
- Google Cloud Platform (GCP) Security Command Center Alerts enablement scripts☆30Updated 3 years ago
- Terraform code and Sentinel policies for HashiConf-2019 talk/demo☆10Updated 5 years ago
- GCP CIS 1.1.0 Benchmark InSpec Profile☆130Updated 6 months ago
- This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engi…☆70Updated 6 months ago
- Gathers AWS inventory and outputs CSV in the format for FedRAMP SSP☆36Updated 6 years ago
- Run compliance and security controls to detect Terraform AWS resources deviating from security best practices prior to deployment using P…☆27Updated 3 months ago
- ☆39Updated 3 years ago
- Sentinel policies for use in pre-sales workshops: https://hashicorp.github.io/workshops☆24Updated last year
- Automated testing, generation & manipulation of #osquery packs☆72Updated 4 months ago
- Like the unix tree command but for GCP Org Heirarchy☆27Updated 3 years ago
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- Git action to generate security lint report for Kubernetes workload YAML files on PR☆29Updated 2 years ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- Controls for Amazon Web Services☆26Updated 5 years ago
- Create a Golden AMI Pipeline integrated with a Qualys Scanner for vulnerability assessments☆18Updated 5 years ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated 8 months ago
- Landing Page Content/Builder for MITRE Security Automation Framework☆28Updated last week
- InSpec GCP (Google Cloud Platform) Resource Pack☆149Updated 4 months ago