finos / common-cloud-controlsLinks
FINOS Common Cloud Controls
☆62Updated this week
Alternatives and similar repositories for common-cloud-controls
Users that are interested in common-cloud-controls are comparing it to the libraries listed below
Sorting:
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆200Updated last week
- ☆16Updated last year
- Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security☆101Updated 3 weeks ago
- Open Source Software Secure Supply Chain Framework☆235Updated 2 years ago
- ☆99Updated this week
- Threat model for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based ap…☆59Updated 2 years ago
- Scan GitHub Actions Workflow logs for IOCs☆15Updated 2 weeks ago
- GitHub action to scan container images with Palo Alto Networks' Prisma Cloud☆58Updated 4 months ago
- Repository for on-going work as part of the SBOM for AI Tiger Team effort.☆35Updated last week
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated last year
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆210Updated 2 months ago
- OWASP Foundation web repository☆27Updated last week
- This python app generates NIST 800 53 control implementation for each control and generate the CSV file.☆49Updated last year
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆170Updated last month
- A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting e…☆47Updated 2 months ago
- A full insecure kubernetes application for testing security tools☆89Updated 3 months ago
- The Compliance Validator☆182Updated this week
- A tool for preventing the installation of malicious npm and PyPI packages☆153Updated this week
- Various deployments of the OSCAL editor☆46Updated last year
- A standard API specification for exchanging supply chain artifacts and intelligence☆83Updated last month
- OWASP Foundation Web Respository☆55Updated 2 years ago
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆114Updated this week
- This repository is a collection of resources to help facilitate compliance innovation utilizing Cloud, DevSecOps and Software Factory tec…☆73Updated last year
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆349Updated 2 months ago
- OCSF (https://schema.ocsf.io/) models in Python using Pydantic.☆23Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆230Updated 11 months ago
- Threat Designer is a GenerativeAI application designed to automate and streamline the threat modeling process for secure system design.☆132Updated 2 weeks ago
- Summaries, transcripts, key points, and other useful insights from fwd:cloudsec 2025 talks for those of us who don't have time to watch e…☆73Updated last month
- A list of cloud security tools and vendors.☆174Updated 11 months ago
- Manage a uniform team of security managers for every organization in your enterprise☆18Updated 11 months ago