Alternatives and similar repositories for compliance-to-policy

Users that are interested in compliance-to-policy are comparing it to the libraries listed below

• ComplianceAsCode / auditree-framework
  The Auditree framework tool to run compliance control checks as unit tests.
  ☆72Updated last year
• GoComply / fedramp
  Open source tool for processing OSCAL based FedRAMP SSPs
  ☆43Updated last year
• oscal-compass / compliance-trestle
  An opinionated tooling platform for managing compliance as code, using continuous integration and NIST's OSCAL standard.
  ☆220Updated this week
• oscal-compass / compliance-trestle-demos
  Demo setup for compliance-trestle
  ☆35Updated last week
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆45Updated 5 years ago
• EasyDynamics / oscal-rest-service
  Implementation of the OSCAL REST API
  ☆19Updated last year
• marco-lancini / cartography-queries
  Utilities for programmatic analysis of Cartography data.
  ☆40Updated last week
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• cloud-native-security-controls / controls-catalog
  ☆16Updated last year
• privateerproj / privateer
  Privateer is a plugin-based framework to validate the status of deployed resources.
  ☆16Updated this week
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆54Updated this week
• chughes29 / DoD-Federal-Government-Cloud-Computing-Resources
  A collection of DoD and Federal Government Cloud Computing Resources
  ☆49Updated 4 years ago
• EasyDynamics / oscal-editor-deployment
  Various deployments of the OSCAL editor
  ☆47Updated last year
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆29Updated 2 years ago
• GovTechSG / tech-standards
  ☆24Updated 3 months ago
• oscal-compass / compliance-trestle-agile-authoring
  Agile authoring tutorial and repo set-up tooling
  ☆23Updated last year
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• usnistgov / oscal-cli
  A simple open source command line tool to support common operations over OSCAL content.
  ☆57Updated this week
• OWASP / www-project-devsecops-maturity-model
  OWASP Foundation Web Respository
  ☆57Updated 2 months ago
• ComplianceAsCode / auditree-arboretum
  The Auditree common fetchers, checks and harvest reports library.
  ☆20Updated 2 years ago
• EasyDynamics / oscal-react-library
  A library of React components and an example user interface application that provides a direct UI into NIST's Open Security Controls Asse…
  ☆63Updated last year
• mitre / heimdall_tools
  DEPRECATED: A set of utilities for converting and working with compliance data for viewing in the heimdall applications
  ☆35Updated 3 years ago
• oscal-club / awesome-oscal
  A list of tools, blog posts, and other resources that further the use and adoption of OSCAL standards.
  ☆194Updated 5 months ago
• chughes757 / SecureSoftwareSupplyChain
  This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.
  ☆139Updated 3 years ago
• GSA / oscal-ssp-to-word
  ☆18Updated 4 years ago
• redteam-project / sckg
  Security Control Knowledge Graph
  ☆42Updated 3 years ago
• oscal-club / community
  The community area and documents about Code of Conduct.
  ☆18Updated 4 years ago
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 9 months ago
• GovReady / compliancelib-python
  Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework
  ☆63Updated 5 years ago
• caizencloud / caizen
  Harness the security superpowers of your cloud asset inventory
  ☆11Updated last year