Alternatives and similar repositories for compliance

Users that are interested in compliance are comparing it to the libraries listed below

• OpenSCAP / openscap-daemon
  Manages continuous scans of your infrastructure
  ☆107Updated 3 years ago
• dev-sec / linux-patch-baseline
  DevSec Linux Patch Baseline - InSpec Profile
  ☆83Updated last year
• diogomonica / actuary
  An actuary is a business professional who analyzes the financial consequences of risk.
  ☆80Updated 7 years ago
• aaronlippold / xccdf2inspec
  ***MERGED: SEE README:*** The XCCDF to InSpec parser scans and extracts the controls defined in the DISA XCCDF STIG XML documents and con…
  ☆12Updated 6 years ago
• dev-sec / postgres-baseline
  DevSec PostgreSQL Baseline - InSpec Profile
  ☆52Updated 4 months ago
• dockersecuritytools / batten
  Hardening and Auditing Tool For Docker Hosts & Containers
  ☆68Updated 10 years ago
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 7 years ago
• mozilla-services / userplex
  DEPRECATED - Propagate users from Mozilla's Person API to third party systems.
  ☆40Updated 3 years ago
• simp / inspec-profile-disa_stig-el7
  InSpec Profile for the EL7 DISA STIG
  ☆23Updated 2 years ago
• juliedavila / STIGMA
  Simple Python program to parse OpenSCAP result files and give results
  ☆52Updated last year
• opencontrol / schemas
  YAML schema, examples, and validators for OpenControl format.
  ☆75Updated 6 years ago
• threatstack / authkeys
  A tool for getting SSH keys out of LDAP
  ☆49Updated 3 years ago
• assimilation / assimilation-official
  This is the official main repository for the Assimilation project
  ☆51Updated last year
• sous-chefs / ossec
  Development repository for the ossec cookbook
  ☆44Updated last week
• dev-sec / mysql-baseline
  DevSec MySQL Baseline - InSpec Profile
  ☆62Updated last year
• zuBux / drydock
  drydock provides a flexible way of assessing the security of your Docker daemon configuration and containers using editable audit templat…
  ☆65Updated 9 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• cedwards / saltstack-cis-module
  CIS security audit execution module
  ☆21Updated 9 years ago
• cloud-gov / compliance
  Compliance automation for cloud.gov
  ☆36Updated 2 months ago
• jessfraz / strace2elastic
  Strace container output to a file, then shove the syscalls into elastic search.
  ☆49Updated 8 years ago
• mitre / inspec_tools
  A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results…
  ☆93Updated last year
• theforeman / foreman_openscap
  Foreman plug-in for displaying OpenSCAP audit reports
  ☆41Updated last month
• aquasecurity / manifesto
  Use Manifesto to store and query metadata for container images.
  ☆163Updated 6 years ago
• dev-sec / ssl-baseline
  DevSec SSL/TLS Baseline - InSpec Profile
  ☆67Updated last year
• dev-sec / apache-baseline
  DevSec Apache Baseline - InSpec Profile
  ☆39Updated last year
• mhausenblas / the-container-security-book
  The Container Security Book—a free book for practitioners
  ☆83Updated 5 years ago
• GSA / DevSecOps
  Base infrastructure for future DevSecOps environment in AWS
  ☆25Updated 4 years ago
• sqreen / DevOpsSecurityChecklist
  ☆84Updated 2 years ago
• ianmiell / bad-dockerfile
  A Dockerfile that creates an image with known vulnerabilities.
  ☆49Updated 3 years ago
• Netflix-Skunkworks / cloudy-kraken
  AWS Red Team Orchestration Framework
  ☆101Updated 8 years ago