cloud-native-security-controls/controls-catalog external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cloud-native-security-controls/controls-catalog

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cloud-native-security-controls/controls-catalog)

Close

cloud-native-security-controls / controls-catalogView on GitHubMore

• External links
• Readme badge

☆16May 15, 2024Updated last year

Alternatives and similar repositories for controls-catalog

Users that are interested in controls-catalog are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• mlieberman85 / scq

  View on GitHub
  Supply Chain Query Tool
  ☆13May 25, 2022Updated 3 years ago
• kusaridev / skootrs

  View on GitHub
  A CLI tool for creating secure by design/default source repos.
  ☆28Jul 29, 2024Updated last year
• sozercan / guac-ai-mole

  View on GitHub
  🥑 Inspect and understand an organization's software supply chain using AI to enable stakeholders to make actionable decisions about soft…
  ☆22Apr 15, 2024Updated 2 years ago
• httplock / httplock

  View on GitHub
  An http proxy for reproducibility.
  ☆19Jan 10, 2023Updated 3 years ago
• guacsec / guac-visualizer

  View on GitHub
  Visualizer for GUAC
  ☆33Updated this week
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• eminaktas / threat-hunting-at-scale-demo

  View on GitHub
  Threat Hunting at Scale: Auditing Thousands of Clusters With Falco + Fluent
  ☆12Aug 13, 2022Updated 3 years ago
• seedwing-io / seedwing-policy

  View on GitHub
  A functional type system for policy inspection, audit and enforcement.
  ☆14Aug 17, 2023Updated 2 years ago
• cqframework / draft-measures

  View on GitHub
  Draft Measures Working Content Repository
  ☆10Apr 15, 2021Updated 5 years ago
• devsecflow / Cloud-Native-Assurance-Maturity-Model

  View on GitHub
  A comprehensive framework and assessment toolkit for measuring and improving Cloud Native security maturity across 8 critical business fu…
  ☆10Jun 24, 2025Updated 10 months ago
• in-toto / in-toto-golang

  View on GitHub
  A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.
  ☆149Updated this week
• RS-Credentive / oscal-pydantic

  View on GitHub
  ☆23Apr 6, 2024Updated 2 years ago
• defenseunicorns-labs / lula1

  View on GitHub
  The Compliance Validator
  ☆185Updated this week
• Agh42 / oscal4neo4j

  View on GitHub
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆34Jan 28, 2023Updated 3 years ago
• scylladb / terraform-provider-scylladbcloud

  View on GitHub
  Terraform provider for ScyllaDB Cloud.
  ☆11Updated this week
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• kubewarden / kubewarden.io

  View on GitHub
  Kubewarden website
  ☆12Updated this week
• kusaridev / spector

  View on GitHub
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆33Apr 22, 2025Updated last year
• sigstore / friends

  View on GitHub
  Sigstore user stories
  ☆32Aug 25, 2023Updated 2 years ago
• ChaosInTheCRD / Dexter

  View on GitHub
  Trust Dexter to ensure that all your images are pinned by digest for better security
  ☆31Nov 8, 2023Updated 2 years ago
• usnistgov / OSCAL-DEFINE

  View on GitHub
  Develop Enhancements, Future Implementations and New Education
  ☆15Nov 27, 2023Updated 2 years ago
• usnistgov / oscal-cat

  View on GitHub
  OSCAL Content Authoring Tool
  ☆13Apr 3, 2023Updated 3 years ago
• usnistgov / metaschema-java

  View on GitHub
  Java tools and libraries providing a Metaschema toolchain
  ☆15Oct 27, 2025Updated 6 months ago
• kubernetes101 / gitopsdays

  View on GitHub
  ☆11Jun 23, 2022Updated 3 years ago
• doyensec / oidc-ssrf

  View on GitHub
  An Evil OIDC Server
  ☆53Oct 19, 2022Updated 3 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• CivicActions / oscal-component-definitions

  View on GitHub
  OSCAL reusable component definitions library
  ☆16Mar 14, 2025Updated last year
• Azure / AzureGovernedPipelines

  View on GitHub
  A template repository for governed pipelines.
  ☆11Jan 15, 2026Updated 3 months ago
• mlieberman85 / supply-chain-examples

  View on GitHub
  ☆23Oct 26, 2021Updated 4 years ago
• aws-samples / automated-security-helper-pipeline

  View on GitHub
  ☆14Apr 14, 2023Updated 3 years ago
• mrwadams / otx-mcp

  View on GitHub
  ☆20Apr 10, 2025Updated last year
• oscal-compass / compliance-trestle

  View on GitHub
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆250Updated this week
• GSA / oscal-gen-tool

  View on GitHub
  ☆18Jul 14, 2021Updated 4 years ago
• cyralinc / brewOPA

  View on GitHub
  A data access control framework for Open Policy Agent
  ☆37Jun 12, 2024Updated last year
• adanalvarez / bedrock-secure-questionnaire-automation

  View on GitHub
  Infrastructure-as-code for a serverless knowledge base using Amazon Bedrock, Aurora PostgreSQL (with pgvector), Lambda, and S3. This setu…
  ☆19Mar 23, 2025Updated last year
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• oazabir / codeuml

  View on GitHub
  Automatically exported from code.google.com/p/codeuml
  ☆12Apr 23, 2015Updated 11 years ago
• omnibor / spec

  View on GitHub
  Specification for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆26Nov 17, 2025Updated 5 months ago
• caizencloud / caizen

  View on GitHub
  Harness the security superpowers of your cloud asset inventory
  ☆11Sep 22, 2024Updated last year
• inferno-framework / inferno-template

  View on GitHub
  Use this template to start making your own Inferno Test Kit
  ☆16Updated this week
• gcmurphy / osv

  View on GitHub
  Rust implementation of ossf osv specification
  ☆15Apr 2, 2026Updated 3 weeks ago
• dynatrace-oss / invadium

  View on GitHub
  Invadium runs exploit playbooks against vulnerable target applications in an intuitive, reproducible, and well-defined manner.
  ☆11Apr 27, 2023Updated 3 years ago
• CMSgov / ars-machine-readable

  View on GitHub
  Publish a machine readable version of the ARS standards to facilitate compliance as code efforts.
  ☆25Feb 26, 2024Updated 2 years ago