Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking
☆656Mar 1, 2026Updated 3 weeks ago
Alternatives and similar repositories for gapps
Users that are interested in gapps are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CISO Assistant is a one-stop-shop GRC platform for Risk Management, AppSec, Compliance & Audit, TPRM, Privacy, and Reporting. It supports…☆3,679Updated this week
- Management tool for the information security management system / Outil de gestion du système de management de la sécurité de l'informatio…☆338Updated this week
- Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).☆994Sep 7, 2025Updated 6 months ago
- Useful templates and working document for implementing ISO 27001 - ISMS☆217Mar 10, 2026Updated 2 weeks ago
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆345Feb 19, 2026Updated last month
- An open source, self-service GRC tool to automate security assessments and compliance.☆208Dec 10, 2024Updated last year
- SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.☆53Mar 4, 2026Updated 2 weeks ago
- A modern, all-in-one Governance, Risk & Compliance (GRC) solution designed for privacy, security, and compliance teams. As an open-source…☆76Mar 8, 2026Updated 2 weeks ago
- Open source cyber-serenity platform that help the security teams designing and managing companies' ISMS, and which allow them to create r…☆18Mar 13, 2026Updated last week
- Quickly create workflows, business and process automation pipelines. Supports API, UI and Cron based workflows.☆30Feb 7, 2024Updated 2 years ago
- Oxomium is a cybersecurity gouvernance and conformity (GRC) tool for CISCO and SECOPS. By linking framework requirements, controld schedu…☆17Mar 9, 2026Updated 2 weeks ago
- compliance assessment and POA&M management for CMMC/NIST 800-171A☆110Jan 2, 2025Updated last year
- AzureKitty is an Office 365 and Azure configuration audit tool☆15Jan 28, 2024Updated 2 years ago
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆56Oct 22, 2021Updated 4 years ago
- NIST CyberSecurity Framework management tool☆167Nov 22, 2021Updated 4 years ago
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆104Jun 14, 2021Updated 4 years ago
- Protect your data in minutes !☆125Nov 5, 2024Updated last year
- Build security program documentation using Git and Markdown☆28Jan 26, 2026Updated last month
- Pulled the H-1 Table from the NIST SP 800-53 Rev. 4. Table maps applicable NIST controls to the ISO/IEC 27001 Controls☆20Aug 5, 2019Updated 6 years ago
- Template SOC2 Policy Authority - documentation pipeline☆139Sep 23, 2020Updated 5 years ago
- This repository is dedicated to providing resources, information, and tools related to the NIS2 Directive, a European Union regulation ai…☆45Jan 28, 2026Updated last month
- Osquery Packs we use for customer security hardening☆12Jun 30, 2025Updated 8 months ago
- OWASP Foundation Web Respository☆76Feb 7, 2026Updated last month
- NIST 800-53 Baseline Configuration Tool☆15Aug 23, 2024Updated last year
- A collection of dashboards, templates, API's and Power BI code for vulnerability management and analysis☆23Feb 2, 2025Updated last year
- A list of cloud security tools and vendors.☆186Sep 6, 2024Updated last year
- VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, i…☆549Mar 10, 2026Updated last week
- ☆48Feb 22, 2023Updated 3 years ago
- Cybether - A modern, open-source Cybersecurity Governance, Risk, and Compliance (GRC) dashboard☆88Dec 14, 2025Updated 3 months ago
- hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.☆29Jan 19, 2022Updated 4 years ago
- ISO 27001 certification requires organizations to prove their compliance with the Standard with appropriate documentation, which can run …☆119Jul 17, 2020Updated 5 years ago
- Mapping the information system / Cartographie du système d'information☆500Updated this week
- Docker helper files for running eramba software☆68Feb 17, 2026Updated last month
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆13,344Updated this week
- Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe …☆411Jan 30, 2026Updated last month
- cloud.gov security policies and procedures☆27Mar 5, 2026Updated 2 weeks ago
- NIST SP 800-53 content and other OSCAL content examples☆423Updated this week
- Documenting SOC 2 tools and processes☆101Jan 19, 2022Updated 4 years ago
- Assorted public MSP scripts☆14Feb 9, 2025Updated last year