finos / common-cloud-controlsLinks
FINOS Common Cloud Controls
☆64Updated this week
Alternatives and similar repositories for common-cloud-controls
Users that are interested in common-cloud-controls are comparing it to the libraries listed below
Sorting:
- ☆107Updated this week
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆205Updated this week
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆58Updated 2 years ago
- Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security☆108Updated 3 weeks ago
- ☆16Updated last year
- Summaries, transcripts, key points, and other useful insights from fwd:cloudsec 2025 talks for those of us who don't have time to watch e…☆77Updated 2 months ago
- OWASP Foundation web repository☆33Updated this week
- A full insecure kubernetes application for testing security tools☆89Updated 4 months ago
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆213Updated 3 months ago
- Manage a uniform team of security managers for every organization in your enterprise☆25Updated this week
- Scan GitHub Actions Workflow logs for IOCs☆15Updated last week
- The Compliance Validator☆184Updated last week
- GitHub action to scan container images with Palo Alto Networks' Prisma Cloud☆60Updated 5 months ago
- A list of cloud security tools and vendors.☆178Updated last year
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆176Updated 2 months ago
- Threat model for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based ap…☆59Updated 2 years ago
- Open Source Software Secure Supply Chain Framework☆236Updated 2 years ago
- OWASP Foundation Web Respository☆55Updated 2 years ago
- Threat Designer is a GenerativeAI application designed to automate and streamline the threat modeling process for secure system design.☆146Updated 2 weeks ago
- A tool for preventing the installation of malicious npm and PyPI packages☆160Updated last week
- Harness the security superpowers of your cloud asset inventory☆11Updated 11 months ago
- A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting e…☆48Updated last week
- Repository for on-going work as part of the SBOM for AI Tiger Team effort.☆39Updated last month
- Various deployments of the OSCAL editor☆46Updated last year
- An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.☆115Updated last week
- ☆121Updated 2 weeks ago
- A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.☆114Updated this week
- A standard API specification for exchanging supply chain artifacts and intelligence☆84Updated this week
- OCSF (https://schema.ocsf.io/) models in Python using Pydantic.☆23Updated 2 weeks ago
- FedRAMP Automation☆343Updated 5 months ago