finos / common-cloud-controlsLinks
FINOS Common Cloud Controls
☆76Updated 3 weeks ago
Alternatives and similar repositories for common-cloud-controls
Users that are interested in common-cloud-controls are comparing it to the libraries listed below
Sorting:
- An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.☆223Updated last week
- ☆132Updated last week
- Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security☆128Updated last week
- A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting e…☆52Updated 2 months ago
- OWASP Foundation web repository☆38Updated 2 months ago
- Open Source Software Secure Supply Chain Framework☆238Updated 3 years ago
- ☆16Updated last year
- A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.☆197Updated 6 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆59Updated 2 years ago
- OWASP Foundation Web Respository☆57Updated 2 months ago
- Various deployments of the OSCAL editor☆47Updated last year
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆222Updated 7 months ago
- Repository for on-going work as part of the SBOM for AI Tiger Team effort.☆40Updated 5 months ago
- The Compliance Validator☆184Updated last month
- GitHub action to scan container images with Palo Alto Networks' Prisma Cloud☆58Updated last week
- OCSF (https://schema.ocsf.io/) models in Python using Pydantic.☆30Updated 3 weeks ago
- Threat model for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based ap…☆59Updated 2 years ago
- Manage a uniform team of security managers for every organization in your enterprise☆25Updated this week
- A simple open source command line tool to support common operations over OSCAL content.☆57Updated last week
- A full insecure kubernetes application for testing security tools☆91Updated 2 months ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆95Updated last week
- A list of cloud security tools and vendors.☆180Updated last year
- FedRAMP Automation☆348Updated 8 months ago
- Scan GitHub Actions Workflow logs for IOCs☆16Updated last week
- Threat Designer is a GenerativeAI application designed to automate and streamline the threat modeling process for secure system design.☆175Updated 3 weeks ago
- This python app generates NIST 800 53 control implementation for each control and generate the CSV file.☆53Updated 2 years ago
- ☆131Updated last week
- This repository is a collection of resources to help facilitate compliance innovation utilizing Cloud, DevSecOps and Software Factory tec…☆76Updated 2 years ago
- Generate a score for your sbom to understand if it will actually be useful.☆235Updated last year
- Harness the security superpowers of your cloud asset inventory☆11Updated last year