Alternatives and similar repositories for risk-measurement

Users that are interested in risk-measurement are comparing it to the libraries listed below

• dropbox / vsmc
  Vendor Security Model Contract
  ☆98Updated 3 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆54Updated last year
• counteractive / security-controls
  ☆48Updated 2 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆77Updated 4 years ago
• magoo / minimalist-risk-management
  A minimalist risk management program!
  ☆145Updated 3 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆77Updated last year
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆46Updated 8 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆44Updated 4 years ago
• WithSecureOpenSource / elevation-of-privacy
  Privacy Cards for Software Developers
  ☆53Updated 6 years ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆45Updated 5 years ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆37Updated 6 months ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• toniblyx / aws-forensic-tools
  Tools for AWS forensics
  ☆63Updated 9 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 6 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 8 months ago
• kindlyops / havengrc
  ☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
  ☆103Updated 4 years ago
• KennaSecurity / toolkit
  Kenna Security API and Scripting Toolkit
  ☆34Updated last month
• secmerc / materialize-threats
  ☆68Updated 3 months ago
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated last year
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 3 years ago
• matthewdfuller / aws-guides
  AWS docs, guides, and other tools
  ☆75Updated 2 years ago
• trevorbryant / awesome-controls
  A collection of awesome security controls mapping for solutions across frameworks.
  ☆56Updated 5 years ago
• keithmccammon / cybersecurity-models
  A collection of models for organizing, prioritizing, and understanding cybersecurity and information risk management concepts.
  ☆24Updated last year
• haidermdost / Threat-Detection-Maturity-Framework
  ☆18Updated 4 years ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated 3 months ago
• panther-labs / panther_analysis_tool
  Command line tool for working with Panther rules and policies
  ☆42Updated last week
• Algbra-Labs-OSS / Chronicle
  ☆65Updated last year
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated last year
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆22Updated 7 years ago