aquasecurity / windows-benchLinks
Checks whether a Windows server according to security best practices as defined in the CIS Distribution-Independent Windows Benchmark
☆21Updated last month
Alternatives and similar repositories for windows-bench
Users that are interested in windows-bench are comparing it to the libraries listed below
Sorting:
- EPSS(Exploit Prediction Scoring System) API client☆19Updated this week
- The Clouditor is a tool to support continuous cloud assurance. Developed by Fraunhofer AISEC.☆82Updated last week
- cis_pdf_parser.py is a python script for parsing CIS Benchmark PDF files from the Center for Internet Security into CSV files.☆29Updated last year
- OSCAL SSP content for technologies shipped by Red Hat☆15Updated 2 years ago
- (WIP) CIS Microsoft Azure Foundations Benchmark☆16Updated 3 years ago
- Threat model for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based ap…☆59Updated 2 years ago
- Microsoft Defender for Cloud threat matrix for Kubernetes☆26Updated 2 years ago
- Extract CIS benchmarks from PDFs☆14Updated 2 years ago
- Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch …☆167Updated last year
- A collection of dashboards, templates, API's and Power BI code for vulnerability management and analysis☆24Updated 8 months ago
- DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications☆35Updated 3 years ago
- A web application to streamline the development of STIGs from SRGs☆80Updated last week
- Notus is a vulnerability scanner for creating results from local security checks☆60Updated 2 weeks ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆30Updated 8 months ago
- VMClarity is a tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and vulnerabilities☆102Updated last year
- CLI tool for interacting with GPT, analyze local files, etc.☆15Updated 5 months ago
- Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runti…☆57Updated 10 months ago
- A tool to help you to automate processes within kubernetes☆18Updated 8 months ago
- Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…☆14Updated 5 months ago
- Osquery Packs we use for customer security hardening☆12Updated 4 months ago
- ☆90Updated 5 months ago
- Threat Modeling (based on STRIDE approach) for Kubernetes systems.☆25Updated last year
- ☆19Updated 4 years ago
- Container 📦 Security 🔐 Best Practices Checklist 📋 & Slides☆68Updated 5 years ago
- Add a layer of active defense to your cloud applications.☆95Updated this week
- Tool for obfuscating and deobfuscating data.☆74Updated last year
- Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…☆143Updated 2 years ago
- DefectDojo Community Content☆18Updated last month
- eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…☆45Updated 2 weeks ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆67Updated 4 months ago