Alternatives and similar repositories for security-controls

Users that are interested in security-controls are comparing it to the libraries listed below

• OWASP / www-project-cyber-defense-matrix
  Documentation on the Cyber Defense Matrix
  ☆24Updated 2 years ago
• panther-labs / tutorials
  Cloud security tutorials and best practices
  ☆38Updated 2 years ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆63Updated 5 years ago
• deepanshusood / SANS-Security-Policy-Templates
  SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…
  ☆51Updated 4 years ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 9 months ago
• brianwifaneye / NIST-CSF
  NIST CyberSecurity Framework management tool
  ☆166Updated 4 years ago
• chandunsa / IRP
  Incident Response Playbooks
  ☆15Updated 6 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 5 years ago
• mikeprivette / NIST-to-Tech
  An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
  ☆126Updated last year
• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆168Updated this week
• trevorbryant / awesome-controls
  A collection of awesome security controls mapping for solutions across frameworks.
  ☆57Updated 5 years ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆130Updated 5 years ago
• carlota / showmethemoney
  These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…
  ☆77Updated 3 months ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• sans-blue-team / sec530-wiki
  ☆55Updated 4 years ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆60Updated 3 years ago
• pulsedive / certrss
  ☆120Updated 2 months ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆24Updated 3 years ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆48Updated last year
• haidermdost / Threat-Detection-Maturity-Framework
  ☆18Updated 4 years ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆45Updated last year
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆25Updated 6 years ago
• monarc-project / MonarcAppFO
  MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU
  ☆115Updated 3 weeks ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆45Updated 5 years ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆109Updated last year
• SecurityBagel / VulnBagel
  A collection of dashboards, templates, API's and Power BI code for vulnerability management and analysis
  ☆24Updated 11 months ago
• Acheron-VAF / Acheron
  Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.
  ☆34Updated 2 years ago
• center-for-threat-informed-defense / public-resources
  Collection of resources related to the Center for Threat-Informed Defense
  ☆76Updated last year
• k-bailey / detection-engineering-maturity-matrix
  ☆98Updated 3 years ago
• elastic / dorothy
  ☆192Updated 2 weeks ago