Alternatives and similar repositories for standards

Users that are interested in standards are comparing it to the libraries listed below

• GovReady / hyperGRC
  hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.
  ☆25Updated 3 years ago
• CivicActions / ssp-toolkit
  Automate the creation of a System Security Plan (SSP)
  ☆39Updated 3 weeks ago
• opencontrol / schemas
  YAML schema, examples, and validators for OpenControl format.
  ☆74Updated 6 years ago
• threatstack / trashtaxi
  Keeping your infrastructure clean since 2018
  ☆12Updated last year
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated 2 weeks ago
• dropbox / vsmc
  Vendor Security Model Contract
  ☆98Updated 3 years ago
• kindlyops / havengrc
  ☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
  ☆102Updated 4 years ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆44Updated 5 years ago
• GovReady / 800-53-server
  Prototype of making fisma 800-53 controls interactive
  ☆29Updated 4 years ago
• opencontrol / fedramp-templater
  EXPERIMENTAL: a template builder for FedRAMP System Security Plans
  ☆39Updated 5 years ago
• magoo / risk-measurement
  read the docs version of risk management
  ☆25Updated 2 years ago
• dowjones / reapsaw
  Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …
  ☆41Updated 4 years ago
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆46Updated 8 years ago
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆54Updated last year
• Netflix-Skunkworks / aws-metadata-proxy
  AWS Metadata Proxy for protection against SSRF
  ☆68Updated 5 years ago
• GovReady / nist-sp-800-53-r5-data
  NIST SP 800-53 Rev 5 as Data
  ☆23Updated 5 years ago
• trevorbryant / fedramp-ssp
  Taking FedRAMP templates to Markdown
  ☆9Updated 3 years ago
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆192Updated 7 months ago
• ComplianceAsCode / auditree-framework
  The Auditree framework tool to run compliance control checks as unit tests.
  ☆68Updated 10 months ago
• Netflix-Skunkworks / cloudtrail-anomaly
  ☆83Updated 5 years ago
• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆41Updated 9 months ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 4 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• marco-lancini / cartography-queries
  Utilities for programmatic analysis of Cartography data.
  ☆37Updated 2 weeks ago
• opencontrol / aws-compliance
  Controls for Amazon Web Services
  ☆26Updated 5 years ago
• GovReady / compliancelib-python
  Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework
  ☆61Updated 5 years ago
• mitre / aws-foundations-cis-baseline
  InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
  ☆78Updated 6 months ago
• Netflix-Skunkworks / swag-client
  Cloud multi-account metadata management tool.
  ☆91Updated 4 years ago
• manywho / awsinventory
  Command line tool to generate a FedRAMP compliant inventory of AWS resources
  ☆22Updated 2 years ago
• mozilla / ssm-acquire
  A python module for orchestrating content acquisitions and analysis via amazon ssm.
  ☆59Updated last year