Alternatives and similar repositories for standards

Users that are interested in standards are comparing it to the libraries listed below

• GovReady / hyperGRC
  hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.
  ☆27Updated 4 years ago
• GovReady / govready-q
  An open source, self-service GRC tool to automate security assessments and compliance.
  ☆204Updated last year
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• dropbox / vsmc
  Vendor Security Model Contract
  ☆97Updated 3 years ago
• CivicActions / ssp-toolkit
  Automate the creation of a System Security Plan (SSP)
  ☆46Updated last week
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆115Updated 5 years ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 11 months ago
• kindlyops / havengrc
  ☁️Haven GRC - easier governance, risk, and compliance 👨‍⚕️👮‍♀️🦸‍♀️🕵️‍♀️👩‍🔬
  ☆103Updated 4 years ago
• GovReady / compliancelib-python
  Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework
  ☆63Updated 5 years ago
• opencontrol / compliance-masonry
  Security Documentation Builder
  ☆373Updated 2 years ago
• risk-redux / control_freak
  NIST SP 800-53, Security and Privacy Controls for Federal Information Systems and Organizations
  ☆40Updated 3 months ago
• mozilla / service-map
  Service mapping API
  ☆26Updated 2 weeks ago
• marco-lancini / cartography-queries
  Utilities for programmatic analysis of Cartography data.
  ☆40Updated last week
• darkbitio / aws-s3-dlp
  Simple DLP monitor for AWS S3 is a tool built on top of CloudWatch events and Lambda functions to alert you when data is transferred to S…
  ☆18Updated 5 years ago
• JupiterOne / security-policy-builder
  CLI for generating policies, standards and control procedures (PSP) documentation in Markdown and publishing to JupiterOne or Confluence
  ☆88Updated last week
• GovReady / nist-sp-800-53-r5-data
  NIST SP 800-53 Rev 5 as Data
  ☆25Updated 5 years ago
• Netflix-Skunkworks / cloudtrail-anomaly
  ☆83Updated 6 years ago
• JupiterOne / security-policy-templates
  A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.
  ☆340Updated last month
• magoo / minimalist-risk-management
  A minimalist risk management program!
  ☆150Updated 3 years ago
• mitre / aws-foundations-cis-baseline
  InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
  ☆77Updated last month
• opencontrol / fedramp-templater
  EXPERIMENTAL: a template builder for FedRAMP System Security Plans
  ☆39Updated 6 years ago
• Netflix-Skunkworks / aws-credential-compromise-detection
  Example detection of compromise credentials in AWS
  ☆122Updated 7 years ago
• GovReady / 800-53-server
  Prototype of making fisma 800-53 controls interactive
  ☆29Updated 5 years ago
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆46Updated 8 years ago
• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆44Updated last year
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆55Updated last month
• security4startups / blueprint_2019
  Security Blueprint for Startups
  ☆39Updated 5 years ago
• we45 / ThreatPlaybook
  A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…
  ☆280Updated this week
• rpetrich / patrolaroid
  A production-friendly malware scanner for your AWS cloud
  ☆200Updated 4 years ago
• magoo / risk-measurement
  read the docs version of risk management
  ☆27Updated 2 years ago