Alternatives and similar repositories for risk-measurement

Users that are interested in risk-measurement are comparing it to the libraries listed below

• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆54Updated last month
• dropbox / vsmc
  Vendor Security Model Contract
  ☆98Updated 3 years ago
• disruptops / IncidentResponseGenerator
  Updated incident response generator for training classes
  ☆44Updated 4 years ago
• mllamazares / STRIDE-vs-ASVS
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆75Updated last year
• magoo / minimalist-risk-management
  A minimalist risk management program!
  ☆149Updated 3 years ago
• ansorren / GDPatrol
  A Lambda-powered Security Orchestration framework for AWS GuardDuty
  ☆53Updated 6 years ago
• counteractive / security-controls
  ☆49Updated 2 years ago
• duo-labs / appsec-education
  Presentations, training modules, and other education materials from Duo Security's Application Security team.
  ☆77Updated 4 years ago
• kindlyops / havengrc
  ☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
  ☆104Updated 4 years ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• kbroughton / azure_cis_scanner
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆54Updated 2 years ago
• owaspsamm / dashboard-webapp
  ☆21Updated 4 years ago
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Updated 3 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 11 months ago
• secmerc / materialize-threats
  ☆69Updated 5 months ago
• security4startups / blueprint_2019
  Security Blueprint for Startups
  ☆39Updated 5 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆64Updated 6 years ago
• toniblyx / aws-forensic-tools
  Tools for AWS forensics
  ☆65Updated 9 years ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆37Updated 9 months ago
• WithSecureOpenSource / elevation-of-privacy
  Privacy Cards for Software Developers
  ☆54Updated 6 years ago
• trevorbryant / awesome-controls
  A collection of awesome security controls mapping for solutions across frameworks.
  ☆57Updated 5 years ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated 2 months ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆29Updated last year
• magoo / Incident-Response-Plan
  Boilerplate Incident Response Plan from "Starting Up Security"
  ☆165Updated 5 years ago
• stevespringett / owasp-risk-rating-calculator
  A Java library for programmatically calculating OWASP Risk Rating scores
  ☆19Updated 2 years ago
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆46Updated 8 years ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆139Updated 4 years ago
• prisma-cloud / IAMFinder
  IAMFinder enumerates and finds users and IAM roles in a target AWS account.
  ☆111Updated 5 years ago
• matthewdfuller / aws-guides
  AWS docs, guides, and other tools
  ☆75Updated 2 years ago
• OpenSecuritySummit / project-ASVS-User-Stories
  ☆20Updated 3 years ago