Alternatives and similar repositories for risk-measurement

Users that are interested in risk-measurement are comparing it to the libraries listed below

• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆44Updated 4 years ago
• dropbox / vsmc
  Vendor Security Model Contract
  ☆98Updated 2 years ago
• counteractive / security-controls
  ☆44Updated 2 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆74Updated 3 years ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆36Updated last month
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated last year
• OpenSecuritySummit / project-ASVS-User-Stories
  ☆19Updated 3 years ago
• disruptops / assess_network
  Assess certain AWS network configurations
  ☆12Updated 6 years ago
• cheerscyber / materials
  Materials used by Product Management and Product Marketing
  ☆12Updated 6 years ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆18Updated 2 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 9 months ago
• haidermdost / Threat-Detection-Maturity-Framework
  ☆18Updated 3 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆46Updated 8 years ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• keithmccammon / cybersecurity-models
  A collection of models for organizing, prioritizing, and understanding cybersecurity and information risk management concepts.
  ☆22Updated 8 months ago
• steeve85 / tfviz
  Visualize your Terraform files
  ☆34Updated 4 years ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 2 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 5 years ago
• owaspsamm / dashboard-webapp
  ☆21Updated 3 years ago
• dowjones / reapsaw
  Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …
  ☆41Updated 4 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 6 years ago
• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆55Updated 4 years ago
• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆53Updated 2 years ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated last month
• opencontrol / standards
  OpenControl-formatted industry standards and requirement documents
  ☆45Updated last year
• w8mej / Threat_Modeling_Bank
  A curated threat modeling library collection
  ☆22Updated last year
• secmerc / materialize-threats
  ☆63Updated 2 years ago
• WarnerMedia / aws-guardduty-enterprise
  Manage GuardDuty At Enterprise Scale
  ☆22Updated 4 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆53Updated last year