Alternatives and similar repositories for minimalist-risk-management

Users that are interested in minimalist-risk-management are comparing it to the libraries listed below

• magoo / risk-measurement
  read the docs version of risk management
  ☆26Updated 2 years ago
• counteractive / security-controls
  ☆48Updated 2 years ago
• mikeprivette / NIST-to-Tech
  An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
  ☆124Updated last year
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆324Updated last year
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• dropbox / vsmc
  Vendor Security Model Contract
  ☆98Updated 3 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 7 months ago
• JupiterOne / security-policy-builder
  CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence
  ☆85Updated last year
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆194Updated 9 months ago
• redshiftzero / awesome-threat-modeling
  a curated list of useful threat modeling resources
  ☆139Updated last year
• carlota / showmethemoney
  These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…
  ☆72Updated 10 months ago
• deepanshusood / SANS-Security-Policy-Templates
  SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…
  ☆46Updated 3 years ago
• grcengineering / grcengineering.github.io
  ☆30Updated last month
• monarc-project / MonarcAppFO
  MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU
  ☆108Updated 3 weeks ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated last year
• cisotradecraft / Podcast
  This GitHub page shows the CISO Tradecraft Podcast broken down by Topic
  ☆132Updated last week
• segmentio / threat-modeling-training
  Segment's Threat Modeling training for our engineers
  ☆245Updated 4 years ago
• opencontrol / standards
  OpenControl-formatted industry standards and requirement documents
  ☆47Updated 2 years ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆36Updated 5 months ago
• brianwifaneye / NIST-CSF
  NIST CyberSecurity Framework management tool
  ☆166Updated 3 years ago
• openraven / magpie
  A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …
  ☆191Updated last year
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆44Updated 5 years ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆138Updated 4 years ago
• MrSecure / review-security-groups
  A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.
  ☆63Updated 5 years ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 5 months ago
• elastic / dorothy
  ☆187Updated this week
• GovReady / hyperGRC
  hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.
  ☆25Updated 3 years ago
• kindlyops / havengrc
  ☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
  ☆102Updated 4 years ago
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆164Updated this week
• TalEliyahu / awesome-CISO-maturity-models
  Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…
  ☆253Updated 2 months ago