Alternatives and similar repositories for compliance

Users that are interested in compliance are comparing it to the libraries listed below

• OpenSCAP / openscap-daemon
  Manages continuous scans of your infrastructure
  ☆107Updated 3 years ago
• dockersecuritytools / batten
  Hardening and Auditing Tool For Docker Hosts & Containers
  ☆68Updated 10 years ago
• dev-sec / linux-patch-baseline
  DevSec Linux Patch Baseline - InSpec Profile
  ☆83Updated last year
• diogomonica / actuary
  An actuary is a business professional who analyzes the financial consequences of risk.
  ☆81Updated 8 years ago
• mozilla-services / userplex
  DEPRECATED - Propagate users from Mozilla's Person API to third party systems.
  ☆40Updated 3 years ago
• aaronlippold / xccdf2inspec
  ***MERGED: SEE README:*** The XCCDF to InSpec parser scans and extracts the controls defined in the DISA XCCDF STIG XML documents and con…
  ☆12Updated 6 years ago
• juliedavila / STIGMA
  Simple Python program to parse OpenSCAP result files and give results
  ☆52Updated last year
• simp / inspec-profile-disa_stig-el7
  InSpec Profile for the EL7 DISA STIG
  ☆24Updated 2 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• sous-chefs / ossec
  Development repository for the ossec cookbook
  ☆44Updated this week
• threatstack / authkeys
  A tool for getting SSH keys out of LDAP
  ☆49Updated 3 years ago
• dev-sec / mysql-baseline
  DevSec MySQL Baseline - InSpec Profile
  ☆62Updated last year
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 7 years ago
• assimilation / assimilation-official
  This is the official main repository for the Assimilation project
  ☆51Updated last year
• threatstack / vpnnotify
  It tells you when you VPN
  ☆14Updated 2 years ago
• ianmiell / bad-dockerfile
  A Dockerfile that creates an image with known vulnerabilities.
  ☆50Updated 3 years ago
• dev-sec / postgres-baseline
  DevSec PostgreSQL Baseline - InSpec Profile
  ☆52Updated 6 months ago
• zuBux / drydock
  drydock provides a flexible way of assessing the security of your Docker daemon configuration and containers using editable audit templat…
  ☆66Updated 9 years ago
• cedwards / saltstack-cis-module
  CIS security audit execution module
  ☆21Updated 9 years ago
• chef-boneyard / audit
  Audit Cookbook for Chef Compliance
  ☆55Updated 4 years ago
• theforeman / foreman_openscap
  Foreman plug-in for displaying OpenSCAP audit reports
  ☆41Updated 2 weeks ago
• opencontrol / aws-compliance
  Controls for Amazon Web Services
  ☆26Updated 5 years ago
• GSA / DevSecOps
  Base infrastructure for future DevSecOps environment in AWS
  ☆25Updated 5 years ago
• aquasecurity / manifesto
  Use Manifesto to store and query metadata for container images.
  ☆163Updated 6 years ago
• mitre / inspec_tools
  A command-line and ruby API of utilities, converters and tools for creating, converting and processing security baseline formats, results…
  ☆94Updated last year
• jessfraz / strace2elastic
  Strace container output to a file, then shove the syscalls into elastic search.
  ☆50Updated 9 years ago
• dev-sec / chef-jenkins-hardening
  ⛔ DEPRECATED: A secure jenkins installation
  ☆17Updated 6 years ago
• dev-sec / apache-baseline
  DevSec Apache Baseline - InSpec Profile
  ☆39Updated last year
• opencontrol / schemas
  YAML schema, examples, and validators for OpenControl format.
  ☆75Updated 6 years ago
• arothian / inspec-aws
  Inspec resources for AWS
  ☆10Updated 7 years ago