bmarsh9 / gapps
Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com
☆436Updated 3 months ago
Related projects ⓘ
Alternatives and complementary repositories for gapps
- Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).☆609Updated 3 months ago
- Useful templates and working document for implementing ISO 27001 - ISMS☆108Updated last week
- Open source templates you can use to bootstrap your security programs☆515Updated 3 weeks ago
- Template SOC2 Policy Authority - documentation pipeline☆101Updated 4 years ago
- ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…☆351Updated last week
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆295Updated 5 months ago
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆532Updated 2 weeks ago
- ☆251Updated last month
- Management tool for the information security management system / Outil de gestion du système de management de la sécurité de l'informatio…☆244Updated this week
- A concise, directive, specific, flexible, and free incident response plan template☆650Updated 6 months ago
- Cyber Incident Response Team Playbook Battle Cards☆360Updated 6 months ago
- Built-in Panther detection rules and policies☆339Updated this week
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆211Updated 2 years ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆110Updated last week
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆563Updated 4 months ago
- External monitoring for organization assets☆372Updated 5 months ago
- ISO 27001 certification requires organizations to prove their compliance with the Standard with appropriate documentation, which can run …☆80Updated 4 years ago
- A curated list of annual cyber security reports☆331Updated this week
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆258Updated 9 months ago
- A list of cloud security tools and vendors.☆135Updated 2 months ago
- SCuBA Secure Configuration Baselines and assessment tool for Google Workspace☆160Updated this week
- An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRI…☆485Updated last month
- NIST CyberSecurity Framework management tool☆157Updated 2 years ago
- An open source, self-service GRC tool to automate security assessments and compliance.☆181Updated last week
- 🚨ATTENTION���🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆380Updated 7 months ago
- CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec and Audit Management and supporting +70 frameworks worldwide with auto-m…☆1,163Updated this week
- Incident Response Methodologies 2022☆979Updated 9 months ago
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆168Updated this week
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆69Updated last month
- This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC a…☆627Updated last month