Alternatives and similar repositories for common-cloud-controls

Users that are interested in common-cloud-controls are comparing it to the libraries listed below

• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆195Updated last week
• awslabs / security-hub-compliance-analyzer
  A compliance analysis tool which enables organizations to more quickly articulate their compliance posture and also generate supporting e…
  ☆46Updated 2 months ago
• cloud-native-security-controls / controls-catalog
  ☆16Updated last year
• ossf / security-baseline
  ☆95Updated this week
• chainguard-dev / ghscan
  Scan GitHub Actions Workflow logs for IOCs
  ☆15Updated this week
• ossf / ai-ml-security
  Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security
  ☆89Updated last week
• defenseunicorns / lula
  The Compliance Validator
  ☆180Updated this week
• OWASP / www-project-ai-maturity-assessment
  OWASP Foundation web repository
  ☆27Updated last week
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆58Updated last year
• chughes757 / Federal-DoD-Software-Factory-Compliance
  This repository is a collection of resources to help facilitate compliance innovation utilizing Cloud, DevSecOps and Software Factory tec…
  ☆73Updated last year
• EasyDynamics / oscal-editor-deployment
  Various deployments of the OSCAL editor
  ☆46Updated 11 months ago
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆168Updated 3 weeks ago
• tenable / EscalateGPT
  An AI-powered tool for discovering privilege escalation opportunities in AWS IAM configurations.
  ☆113Updated this week
• aibom-squad / AIBOM-Tiger-Team
  Repository for on-going work as part of the AIBOM Tiger Team effort.
  ☆23Updated 3 weeks ago
• OWASP / OpenCRE
  ☆116Updated this week
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆230Updated 11 months ago
• microsoft / oss-ssc-framework
  Open Source Software Secure Supply Chain Framework
  ☆236Updated 2 years ago
• someengineering / cloud-security-list
  A list of cloud security tools and vendors.
  ☆171Updated 10 months ago
• google / localtoast
  ☆113Updated last week
• oscal-compass / compliance-trestle-demos
  Demo setup for compliance-trestle
  ☆34Updated 4 months ago
• caizencloud / caizen
  Harness the security superpowers of your cloud asset inventory
  ☆11Updated 9 months ago
• IBM / CBOM
  Cryptography Bill of Materials
  ☆69Updated 5 months ago
• EasyDynamics / oscal-rest
  An initial OpenAPI definition of an OSCAL REST API.
  ☆39Updated 9 months ago
• usnistgov / oscal-cli
  A simple open source command line tool to support common operations over OSCAL content.
  ☆51Updated last week
• EasyDynamics / oscal-react-library
  A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…
  ☆59Updated last year
• tenable / cnappgoat
  CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.
  ☆285Updated 10 months ago
• nyph-infosec / daggerboard
  ☆100Updated 9 months ago
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆83Updated 2 weeks ago
• ossf / s2c2f
  The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…
  ☆210Updated last month
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆89Updated 2 months ago