Alternatives and similar repositories for soc2.fyi

Users that are interested in soc2.fyi are comparing it to the libraries listed below

• JupiterOne / security-policy-builder
  CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence
  ☆88Updated 2 weeks ago
• TristanToye / SOC2-guide
  Documenting SOC 2 tools and processes
  ☆99Updated 4 years ago
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆340Updated 2 months ago
• gjyoung1974 / soc2-policy-templates
  Template SOC2 Policy Authority - documentation pipeline
  ☆138Updated 5 years ago
• vendorsec / mvsp
  Minimum Viable Secure Product mvsp.dev
  ☆204Updated last year
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆182Updated 3 weeks ago
• secengjeff / awskillswitch
  Lambda function that streamlines containment of an AWS account compromise
  ☆344Updated 2 years ago
• someengineering / cloud-security-list
  A list of cloud security tools and vendors.
  ☆184Updated last year
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆179Updated 2 months ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated last year
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆453Updated this week
• bmarsh9 / gapps
  Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking
  ☆641Updated 7 months ago
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆205Updated 7 months ago
• magoo / minimalist-risk-management
  A minimalist risk management program!
  ☆151Updated 3 years ago
• tailscale / security-policies
  Security policies for Tailscale
  ☆310Updated 3 weeks ago
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆89Updated last year
• ocsf / ocsf-docs
  OCSF Documentation
  ☆153Updated 2 weeks ago
• google / localtoast
  ☆115Updated 6 months ago
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆204Updated last year
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated 3 months ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆196Updated last year
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆78Updated 11 months ago
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆60Updated 10 months ago
• tenable / EscalateGPT
  An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.
  ☆117Updated last week
• orcasecurity / orca-toolbox
  ☆124Updated 8 months ago
• ReversecLabs / IAMSpy
  ☆228Updated 2 weeks ago
• DataDog / supply-chain-firewall
  Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages
  ☆215Updated this week
• kindlyops / havengrc
  ☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
  ☆103Updated 4 years ago
• marco-lancini / cartography-queries
  Utilities for programmatic analysis of Cartography data.
  ☆40Updated last week
• Coalfire-CF / Coalfire-AWS-RAMPpak
  Coalfire AWS RAMP/pak Reference Architecture
  ☆37Updated last year