magoo / risk-measurementLinks
read the docs version of risk management
☆26Updated 2 years ago
Alternatives and similar repositories for risk-measurement
Users that are interested in risk-measurement are comparing it to the libraries listed below
Sorting:
- ☆48Updated 2 years ago
- Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.☆54Updated last year
- Vendor Security Model Contract☆98Updated 3 years ago
- A minimalist risk management program!☆143Updated 3 years ago
- Repository for the Open Information Security Risk Universe☆64Updated 3 years ago
- Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI☆44Updated 5 years ago
- 🖇️ STRIDE vs. ASVS equivalence table☆77Updated last year
- Presentations, training modules, and other education materials from Duo Security's Application Security team.☆77Updated 4 years ago
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆103Updated 4 years ago
- A collection of models for organizing, prioritizing, and understanding cybersecurity and information risk management concepts.☆24Updated 11 months ago
- Security Scanner based on CIS benchmark 1.1 inspired by Scout2☆53Updated 2 years ago
- NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations☆40Updated last month
- OSCAL SSP content for technologies shipped by Red Hat☆15Updated 2 years ago
- Updated incident response generator for training classes☆44Updated 4 years ago
- The SOCless automation framework☆140Updated 7 months ago
- Knowledge Report Alert & Normalization Generator☆27Updated last year
- Security Alert Decoration☆27Updated 2 months ago
- GCP CSPM using Google Sheets☆36Updated 5 months ago
- Convert cloudtrail data to MITRE ATT&CK Sightings☆80Updated 3 years ago
- Table Top Exercise (TTX) for Computer Security Incident Response (CSIRT) teams. The templatized artifacts provided will hopefully help te…☆41Updated 5 years ago
- A Lambda-powered Security Orchestration framework for AWS GuardDuty☆53Updated 5 years ago
- Slack bot which promotes Defense in Depth/Zero Trust security practices☆24Updated 2 years ago
- ☆65Updated last year
- ☆19Updated 3 years ago
- Serverless honeytoken 🕵🏻♂️☆80Updated 2 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆48Updated 8 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 6 years ago
- Compares and analyzes GCP IAM roles.☆77Updated 6 months ago
- ☆67Updated 2 months ago
- Security Blueprint for Startups☆39Updated 5 years ago