Alternatives and similar repositories for common-cloud-controls

Users that are interested in common-cloud-controls are comparing it to the libraries listed below

• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆185Updated last week
• EasyDynamics / oscal-editor-deployment
  Various deployments of the OSCAL editor
  ☆46Updated 9 months ago
• EasyDynamics / oscal-react-library
  A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…
  ☆58Updated last year
• ossf / wg-orbit
  ORBIT: Open Resources for Baselines, Interoperability, and Tooling
  ☆12Updated last week
• EasyDynamics / oscal-rest
  An initial OpenAPI definition of an OSCAL REST API.
  ☆39Updated 7 months ago
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆79Updated this week
• EasyDynamics / oscal-rest-service
  Implementation of the OSCAL REST API
  ☆19Updated last year
• cloud-native-security-controls / controls-catalog
  ☆16Updated last year
• ossf / ai-ml-security
  Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security
  ☆79Updated 6 months ago
• GSA / automate.fedramp.gov
  ☆14Updated last week
• ossf / security-baseline
  ☆84Updated this week
• usnistgov / oscal-cli
  A simple open source command line tool to support common operations over OSCAL content.
  ☆48Updated 10 months ago
• oscal-compass / compliance-trestle-agile-authoring
  Agile authoring tutorial and repo set-up tooling
  ☆18Updated 8 months ago
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆50Updated last month
• aibom-squad / AIBOM-Tiger-Team
  Repository for on-going work as part of the AIBOM Tiger Team effort.
  ☆21Updated 3 weeks ago
• CloudSecurityAlliance / continuous-audit-metrics
  Continuous Audit Metrics
  ☆26Updated 11 months ago
• defenseunicorns / lula
  The Compliance Validator
  ☆177Updated this week
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆164Updated 3 weeks ago
• oscal-compass / compliance-trestle-demos
  Demo setup for compliance-trestle
  ☆34Updated 2 months ago
• awslabs / security-hub-compliance-analyzer
  A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting e…
  ☆42Updated last week
• spdx / ntia-conformance-checker
  Check SPDX SBOM for NTIA minimum elements
  ☆61Updated 2 weeks ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆172Updated 5 months ago
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆25Updated 2 years ago
• CivicActions / oscal-component-definitions
  OSCAL reusable component definitions library
  ☆12Updated 2 months ago
• finos / compliant-financial-infrastructure
  Compliant Financial Infrastructure accelerates the development, deployment and adoption of cloud services in a way that adheres to common…
  ☆134Updated 7 months ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆229Updated 9 months ago
• microsoft / oss-ssc-framework
  Open Source Software Secure Supply Chain Framework
  ☆236Updated 2 years ago
• cyght-io / oscal-diagrams
  Automatically generated diagrams for OSCAL models
  ☆19Updated 3 years ago
• DataDog / supply-chain-firewall
  A tool for preventing the installation of malicious PyPI and npm packages
  ☆144Updated this week
• anchore / nvd-data-overrides
  ☆47Updated this week