Alternatives and similar repositories for compliance

Users that are interested in compliance are comparing it to the libraries listed below

• dockersecuritytools / batten
  Hardening and Auditing Tool For Docker Hosts & Containers
  ☆68Updated 10 years ago
• OpenSCAP / openscap-daemon
  Manages continuous scans of your infrastructure
  ☆107Updated 3 years ago
• diogomonica / actuary
  An actuary is a business professional who analyzes the financial consequences of risk.
  ☆81Updated 8 years ago
• mozilla-services / userplex
  DEPRECATED - Propagate users from Mozilla's Person API to third party systems.
  ☆40Updated 3 years ago
• dev-sec / linux-patch-baseline
  DevSec Linux Patch Baseline - InSpec Profile
  ☆83Updated last year
• sous-chefs / ossec
  Development repository for the ossec cookbook
  ☆44Updated last week
• opencontrol / aws-compliance
  Controls for Amazon Web Services
  ☆26Updated 6 years ago
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 7 years ago
• juliedavila / STIGMA
  Simple Python program to parse OpenSCAP result files and give results
  ☆52Updated last year
• zuBux / drydock
  drydock provides a flexible way of assessing the security of your Docker daemon configuration and containers using editable audit templat…
  ☆66Updated 9 years ago
• ianmiell / bad-dockerfile
  A Dockerfile that creates an image with known vulnerabilities.
  ☆50Updated 3 years ago
• jessfraz / strace2elastic
  Strace container output to a file, then shove the syscalls into elastic search.
  ☆50Updated 9 years ago
• dev-sec / postgres-baseline
  DevSec PostgreSQL Baseline - InSpec Profile
  ☆52Updated 8 months ago
• cedwards / saltstack-cis-module
  CIS security audit execution module
  ☆21Updated 9 years ago
• aquasecurity / manifesto
  Use Manifesto to store and query metadata for container images.
  ☆164Updated 6 years ago
• threatstack / authkeys
  A tool for getting SSH keys out of LDAP
  ☆49Updated 3 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• bgeesaman / kubeatf
  ☆56Updated 8 years ago
• mhausenblas / the-container-security-book
  The Container Security Book—a free book for practitioners
  ☆82Updated 5 years ago
• simp / inspec-profile-disa_stig-el7
  InSpec Profile for the EL7 DISA STIG
  ☆24Updated 2 years ago
• chef-boneyard / audit
  Audit Cookbook for Chef Compliance
  ☆55Updated 4 years ago
• lukebond / microscanner-wrapper
  Bash wrapper script for Aquasec Microscanner
  ☆61Updated 5 years ago
• samdoran / ansible-role-rhel6stig
  Ansible role for Red Hat 6 DISA STIG
  ☆21Updated 9 years ago
• nccgroup / kube-auto-analyzer
  Kubernetes Auto Analyzer
  ☆191Updated 5 years ago
• aaronlippold / xccdf2inspec
  ***MERGED: SEE README:*** The XCCDF to InSpec parser scans and extracts the controls defined in the DISA XCCDF STIG XML documents and con…
  ☆12Updated 7 years ago
• threatstack / deputize
  Send information about on-call users to other services like GitLab, LDAP, or Slack
  ☆54Updated 6 months ago
• devsecops / radar
  Radar provides for early checks and review for software defined templates.
  ☆18Updated 9 years ago
• dev-sec / chef-jenkins-hardening
  ⛔ DEPRECATED: A secure jenkins installation
  ☆17Updated 6 years ago
• GSA / DevSecOps
  Base infrastructure for future DevSecOps environment in AWS
  ☆25Updated 5 years ago
• sqreen / DevOpsSecurityChecklist
  ☆84Updated 3 years ago